3 December, 2019
IBM has released security updates to address multiple vulnerabilities in the following products:
- IBM Cloud Pak System 2.3, 184.108.40.206
- IBM PureApplication System 2.3, 220.127.116.11
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS) attack.
- Information disclosure.
- Execute arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates: https://www.ibm.com/blogs/psirt/