Vulnerabilities in IBM® SDK Java™ Technology Edition, used by IBM Integration Bus & IBM App Connect Enterprise v11, V12. These issues were disclosed as part of the IBM Java SDK updates in July 2021
CVEID:CVE-2021-2369
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the Library component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/205796 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)
IBM App Connect Enterprise V12 , V12.0.1.0
IBM App Connect Enterprise V11 , V11.0.0.0 - V11.0.0.14
IBM Integration Bus V10.0.0.0 - V10.0.0.24
Product
|
VRMF
| APAR|
Remediation / Fix
—|—|—|—
IBM App Connect Enterprise V12| V12.0.1.0
| IT38537|
The APAR(IT38537) is available in fix pack
IBM App Connect Enterprise V11| V11.0.0.0 - V11.0.0.14| IT38537|
The APAR (IT38537) is available in fix pack
IBM Integration Bus| V10.0.0.0 - V10.0.0.24| IT38537|
Interim fix for APAR IT38537 is available here on IBM Fix Central.
None