Streams Flows might be affected by some underlying Node.js vulnerabilities.
CVEID:CVE-2020-8277
**DESCRIPTION:**Node.js is vulnerable to a denial of service. By getting the application to resolve a DNS record with a larger number of responses, an attacker could exploit this vulnerability to trigger a DNS request for a host of their choice resulting in a denial of service.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/191755 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
All versions.
Streams Flows has been discontinued. Please uninstall the Streams Flows feature to avoid any security issues.
Streams Flows has been discontinued. Please uninstall the Streams Flows feature to avoid any security issues.
CPE | Name | Operator | Version |
---|---|---|---|
ibm streams | eq | 3.0 |