IBM Updates
3413Warning Date
Severity Level
Warning Number
Target Sector
19 September, 2019
● High
2019-444
All
Description:
IBM has released security updates to address vulnerabilities in the following products:
- Financial Transaction Manager for MP
- Watson Explorer Analytical Components
- Watson Explorer Foundational Components Annotation Administration Console
- Watson Content Analytics
- Watson Explorer Foundational Components
- IBM Watson Explorer Deep Analytics Edition Foundational Components
- Power HMC
- IBM Tivoli Netcool/OMNIbus Integration – Transport Module Common Integration Library
- IBM Tivoli Netcool/OMNIbus Integration – Transformer for Message Bus Integration
- Rational Functional Tester
- IBM Tivoli Composite Application Manager (ITCAM) for Transactions
- IBM Security Key Lifecycle Manager (SKLM)
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information – remotely.
- Man in the middle attack.
- Denial of service attack (DoS)-remotely.
- Escalation of privilege.
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates: