Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

IBM Updates

57

Warning Date: 15 October, 2020

Severity Level ● High

Warning Number: 2020-1932

Target Sector: All

Description:

IBM has released security updates to address vulnerabilities in the following products:

  • ISAM
    • 9.0.7
    • 9.0
    • 8.0
  • IBM Security Verify Access
    • 10.0.0
  • Netcool Operations Insight – Cloud Native Event Analytics
    • 1.6.0
    • 1.6.1
  • IBM Tivoli Application Dependency Discovery Manager
    • 7.3.0.7
  • Tivoli Federated Identity Manager
    • 6.2.2
  • IBM Network Performance Insight
    • 1.3.1
  • IBM Operational Decision Manager
    • 8.10.x
    • 8.9.x
    • 8.8.x
    • 8.7.x
  • WebSphere Application Server Liberty
    • 17.0.0.3 – 20.0.0.10
  • IBM Netcool Agile Service Manager
    • 1.1

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Obtain sensitive information.
  • Bypass security restrictions.
  • Denial of service (DoS).
  • Execute arbitrary code.

Best practice and Recommendations:

The CERT team encourages users to review IBM security advisory and apply the necessary updates:

Last updated at 15 October, 2020