The official site for Saudi CERT
IBM Alert
2514
Warning Date
Severity Level
Warning Number
Target Sector
13 April, 2022
● High
2022-4666
All
IBM has released security updates to address several vulnerabilities in the following products:
- IBM® Security SOAR
- IBM Security SOAR versions 26 – 44.1
- IBM Tivoli Netcool Impact
- 7.1.0
- IBM Netezza Analytics – NPS
- All versions up to 11.2.24
An attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS) attack
- Execute arbitrary code
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/blogs/psirt/security-bulletin-publicly-disclosed-vulnerability-in-gnu-binutils-affects-ibm-netezza-analytics-for-nps/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-tivoli-netcool-impact-is-vulnerable-to-arbitrary-code-exection-due-to-apache-log4j-cve-2022-23307/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-soar-is-affected-but-not-classified-as-vulnerable-to-remote-code-execution-in-spring-framework-cve-2022-22965/
Rate the content
Share the page
