Security Bulletin: Due to use of spring-web-6.2.17.jar, IBM Sterling Connect:Direct Web Services is vulnerable to allows an attacker to consume available disk space. — CVE-2026-22740

IBM · CVE-2026-22740

ID
CVE-2026-22740

Datum
2026-06-06

Activity
2026-06-06

Quelle
IBM

Risiko
medium

Zusammenfassung

CVE-2026-22740 is a Hinweis from IBM. Security Bulletin: Due to use of spring-web-6.2.17.jar, IBM Sterling Connect:Direct Web Services is vulnerable to allows an attacker to consume available disk space. Severity/Threat: medium.

Produkt

IBM Sterling Connect:Direct Web Services

Was tun?

Allgemeine, vorsichtige Schritte (bitte prüfe die offizielle Quelle für Details):

Prüfe Exponierung und plane Maßnahmen nach Risiko und Umfeld.
Identifiziere betroffene Produktversionen und prüfe, ob du betroffen bist.
Spiele Hersteller-Updates/Patches ein oder setze empfohlene Mitigations um.
Lies das offizielle Advisory für betroffene Versionen und konkrete Schritte.

Offizielles Advisory

Mehr dazu

IBM 2026-W23

Security Bulletin: Arbitrary File Write and Remote Code Execution Vulnerability in Langflow v2 API

2026-06-12 CVE-2026-4502

mediumIBM 2026-W24

Security Bulletin: IBM Cloud Pak for Data System (CPDS 1.x) Platform - Multiple Vulnerabilities in IBM Java

2026-06-12 CVE-2026-21945

highIBM 2026-W24

Security Bulletin: IBM Engineering Lifecycle Management - Engineering Workflow Management is impacted by vulnerabilities HTML / XSS Injection observed

2026-06-12 CVE-2025-33128

mediumIBM 2026-W24

Security Bulletin: IBM Event Processing is affected by Multiple vulnerabilities

2026-06-12 CVE-2025-59471

criticalIBM 2026-W24

Security Bulletin: IBM Event Streams is affected by multiple vulnerabilities in Java SE (CVE-2026-21945, CVE-2026-21932, CVE-2026-21933).

2026-06-12 CVE-2026-21945

highIBM 2026-W24

Security Bulletin: IBM TRIRIGA Cross-Site Scripting Vulnerability

2026-06-12 CVE-2026-11372

mediumIBM 2026-W24