IBM Event Streams
By the Year
In 2024 there have been 0 vulnerabilities in IBM Event Streams . Event Streams did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 1 | 7.20 |
2020 | 1 | 8.80 |
2019 | 0 | 0.00 |
2018 | 1 | 5.30 |
It may take a day or so for new Event Streams vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Event Streams Security Vulnerabilities
IBM Event Streams 10.0, 10.1, 10.2, and 10.3 could
CVE-2021-29792
7.2 - High
- July 12, 2021
IBM Event Streams 10.0, 10.1, 10.2, and 10.3 could allow a user the CA private key to create their own certificates and deploy them in the cluster and gain privileges of another user. IBM X-Force ID: 203450.
Improper Privilege Management
IBM Event Streams 10.0.0 could allow an authenticated user to perform tasks to a schema due to improper authentication validation
CVE-2020-4662
8.8 - High
- August 14, 2020
IBM Event Streams 10.0.0 could allow an authenticated user to perform tasks to a schema due to improper authentication validation. IBM X-Force ID: 186233.
authentification
IBM Event Streams 2018.3.0 could allow a remote attacker to submit an API request with a fake Host request header
CVE-2018-1833
5.3 - Medium
- December 18, 2018
IBM Event Streams 2018.3.0 could allow a remote attacker to submit an API request with a fake Host request header. An attacker, who has already gained authorised access via the CLI, could exploit this vulnerability to spoof the request header. IBM X-Force ID: 150507.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Event Streams or by IBM? Click the Watch button to subscribe.