IBM Updates | Security Alerts

The official site for Saudi CERT Sign In | العربية |

| A+ A-

Your review has been sent successfully

IBM Updates

1955

Classification

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

25 August, 2020

● Medium

2020-1677

All

Description:

IBM has released security updates to address multiple vulnerabilities in the following products:

IBM Security Guardium
- 11.0
IBM Netezza Host Management
- 5.4.9.0 – 5.4.28.0
GDE
- 3.0.0.2
IBM Elastic Storage System 3000
- 6.0.0 – 6.0.0.2
- 5.3.0 – 5.3.5
IBM Content Collector for SAP Applications
- 4.0
IBM CICS TX on Cloud
- 10.1.0.0
IBM MQ for HPE NonStop
- 8.1.0
- 8.1.4
IBM Security SiteProtector System
- 3.0.0
- 3.1.1
IBM Spectrum Conductor
- 2.4.1
IBM TXSeries for Multiplatforms
- 8.2.0.0 – 8.2.0.2
- 9.1.0.0 – 9.1.0.1
IBM Netcool Agile Service Manager
- 1.1
IBM Operations Analytics Predictive Insights
- 1.3.6
AIX
- 7.1
- 7.2
VIOS
- 2.2
- 3.1
IBM Spectrum Control
- 5.3.1 -5.3.7
IBM Cloud CLI
- 1.1.0 or earlier
IBM MQ for HPE NonStop
- 8.1.0
- 8.1.4
IBM Tivoli Application Dependency Discovery Manager
- 7.3.0.3 – 7.3.0.7
IBM® Db2®
- Db2 V9.7, V10.1, V10.5, V11.1, and V11.5
WebSphere Application Server
- 9.0
- 8.5
- 8.0
- 7.0

Threats:

Attacker could exploit these vulnerabilities by doing the following:

Cross-site scripting (XSS)
Denial of service attack (DoS)
Information disclosure

Best practice and Recommendations:

The CERT team encourages users to review IBM security advisory and apply the necessary updates:

Last updated at 25 August, 2020