IBM Updates
1667Warning Date
Severity Level
Warning Number
Target Sector
14 July, 2021
● High
2021-3188
All
Description:
IBM has released security updates to address several vulnerabilities in its products:
- IBM Secure Proxy
- 6.0.2
- 6.0.1
- IBM Sterling Secure Proxy
- 3.4.3.2
- IBM Security Verify Access Docker
- 10.0.0
- ISAM
- 9.0
- IBM Secure External Authentication Server
- 6.0.2
- IBM External Authentication Server
- 6.0.1
- IBM Sterling External Authentication Server
- 2.4.3.2
- IBM Control Center
- 6.2.0.0
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Sensitive information disclosure
- Code Injection
- Server-side request forgery (SSRF)
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/support/pages/node/6471623
- https://www.ibm.com/support/pages/node/6471903
- https://www.ibm.com/support/pages/node/6471895
- https://www.ibm.com/support/pages/node/6471615
- https://www.ibm.com/support/pages/node/6471699
- https://www.ibm.com/support/pages/node/6471621
- https://www.ibm.com/support/pages/node/6471577