Your review has been sent successfully

IBM Updates

2524
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Warning Date

Severity Level

Warning Number

Target Sector

2 September, 2019

● High

2019-387

All

Description:

IBM has released security updates to address vulnerabilities in the following products:

  • IBM InfoSphere Master Data Management V11.0, V11.3, V11.4, V11.5, V11.6.
  • Releases 7.1, 7.2, 7.3 and 7.4 of IBM i.
  • IBM CPLEX Optimization Studio and IBM CPLEX Enterprise Server 12.9 and earlier releases.
  • WebSphere Cast Iron v 7.5.0.0, 7.5.0.1, 7.5.1.0, 7.0.0.0, 7.0.0.1, 7.0.0.2.
  • App Connect Professional v 7.5.2.0, 7.5.3.0.
  • VRA – Vyatta 5600.
  • IBM SPSS Collaboration and Deployment Services 7.0.0.1, 8.0.0.0, 8.1.0.0, 8.2, 8.2.1.0.
  • IBM® Intelligent Operations Center V5.1.0 – V5.2.0.
  • IBM® Intelligent Operations Center for Emergency Management V5.1.0 – V5.1.0.6.
  • IBM® Water Operations for Waternamics V5.1.0 – V5.2.1.1.
  • IBM SDK, Java Technology Edition, Version 7 Service Refresh 10 Fix Pack 40 and earlier releases IBM SDK, Java Technology Edition, Version 8 Service Refresh 5 Fix Pack 30 and earlier releases.

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Unauthorized disclosure of information remotely.
  • Unauthorized disclosure of information remotely.
  • Denial of service attack (DoS) – remotely.
  • Code injection.
  • Escalation of privilege.

Best practice and Recommendations:

The CERT team encourages users to review IBM security advisory and apply the necessary updates:

https://www.ibm.com/blogs/psirt/

Last updated at 28 October, 2019

Rate the content

rate-icon
up icon