IBM Updates
1681Warning Date
Severity Level
Warning Number
Target Sector
25 February, 2021
● Medium
2021-2533
All
Description:
IBM has released a security update to address several vulnerabilities in the following products:
- IBM Spectrum Protect Plus
- 10.1.0-10.1.7
- IBM WIoTP MessageGateway
- 5.0.0.1
- IBM IoT MessageSight
- 5.0.0.0
- 2.0.0.2
- Sterling Connect Direct Browser
- 1.5.0.2
- 1.4.1.1
- FileNet Content Manager
- 5.5.5
- 5.5.4
- NX-OS
- NX-OS prior to 8.4(2b)
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary commands -remotely
- Memory corruption
- Denial of service attack (DoS)
- Programs crash
- Obtain sensitive information
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/support/pages/node/6417119
- https://www.ibm.com/support/pages/node/6417051
- https://www.ibm.com/support/pages/node/6417053
- https://www.ibm.com/support/pages/node/6416879
- https://www.ibm.com/support/pages/node/6415915
- https://www.ibm.com/support/pages/node/6367823
- https://www.ibm.com/support/pages/node/6417049