Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-39016

IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 does not sufficiently monitor or control transmitted network traffic volume, so that an actor can cause the software to transmit more traffic than should be allowed for that actor. IBM X-Force ID: 213722.

Published

2022-07-14T17:15:08.203

Last Modified

2025-03-25T14:21:02.290

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	engineering_lifecycle_optimization_-_publishing	6.0.6	Yes
Application	ibm	engineering_lifecycle_optimization_-_publishing	6.0.6.1	Yes
Application	ibm	engineering_lifecycle_optimization_-_publishing	7.0.1	Yes
Application	ibm	engineering_lifecycle_optimization_publishing	7.0	Yes
Application	ibm	engineering_lifecycle_optimization_publishing	7.0.2	Yes
Operating System	linux	linux_kernel	-	No
Operating System	microsoft	windows	-	No

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/213722 VDB Entry, Vendor Advisory ([email protected])
https://www.ibm.com/support/pages/node/6603335 Patch, Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/213722 VDB Entry, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6603335 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)