IBM Updates
1729Warning Date
Severity Level
Warning Number
Target Sector
1 December, 2020
● Medium
2020-2125
All
Description:
IBM has released security updates to address vulnerabilities in the following products:
- IBM Db2
- V10.5
- V11.
- V11.5
- IBM Business Automation Workflow
- V19.0.0.3
- IBM Streams Designer
- CPD 2.5
- CPD 3.0.0
- CPD 3.0.1
- Voice Gateway
- 1.0.6
- 1.0.5
- 1.0.4
- 1.0.3
- 1.0.2.4
- 1.0.2
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Sensitive information disclosure
- Execute arbitrary code with root privileges.
- Denial of service attack (DoS)
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/support/pages/node/6370025
- https://www.ibm.com/support/pages/node/6373004
- https://www.ibm.com/support/pages/node/6373628
- https://www.ibm.com/support/pages/node/6373630
- https://www.ibm.com/support/pages/node/6373662
- https://www.ibm.com/support/pages/node/6373668
- https://www.ibm.com/support/pages/node/6373618
- https://www.ibm.com/support/pages/node/6373666
- https://www.ibm.com/support/pages/node/6370023