The official site for Saudi CERT
IBM Alert
2578
Warning Date
Severity Level
Warning Number
Target Sector
14 April, 2022
● High
2022-4674
All
Description:
IBM has released security updates to address several vulnerabilities in the following products:
- IBM Security Guardium
- R9.1
- R9.2
- R8.5
- IBM Tivoli Application Dependency Discovery Manager
Threats:
An attacker could exploit a vulnerability by doing the following:
- Sensitive information disclosure
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-4104-3/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-have-been-identified-in-apache-log4j-and-the-application-code-shipped-with-the-ds8000-hardware-management-console-hmc-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-struts-affects-ibm-tivoli-application-dependency-discovery-manager-cve-2020-17530-2/
Rate the content
Share the page
