IBM Updates
1792Warning Date
Severity Level
Warning Number
Target Sector
11 May, 2020
● Medium
2020-1221
All
Description:
IBM has released security updates to address 13 vulnerabilities in the following products:
- IBM Cloud Private
- 3.2.1 CD
- 3.2.0 CD
- WebSphere Cast Iron
- 7.5.0.0
- 7.5.0.1
- 7.5.1.0
- 7.0.0.0
- 7.0.0.1
- 7.0.0.2
- App Connect Professional
- 7.5.2.0
- 7.5.3.0
Threats:
- Denial of service (DoS)
- Consume all available memory
- Bypass web application firewall protection
- Execute arbitrary code
- Cross-site scripting (XSS)
- Bypass security restrictions remotely
- Obtain sensitive information remotely
Best practice and Recommendations:
The CERT team encourages users to apply the necessary update according to the link below:
- https://www.ibm.com/support/pages/node/6208295
- https://www.ibm.com/support/pages/node/6208293
- https://www.ibm.com/support/pages/node/6208298
- https://www.ibm.com/support/pages/node/6208291
- https://www.ibm.com/support/pages/node/6208296
- https://www.ibm.com/support/pages/node/6208290
- https://www.ibm.com/support/pages/node/6208292
- https://www.ibm.com/support/pages/node/6208294