The official site for Saudi CERT
IBM Alert
2736
Warning Date
Severity Level
Warning Number
Target Sector
22 March, 2022
● High
2022-4548
All
Description:
IBM has released security updates to address several vulnerabilities in the following products:
- IBM Spectrum Scale
- 5.1.0 – 5.1.2.1
- IBM Watson Knowledge Catalog in Cloud Pak for Data
- 4.0 (all previous refreshes)
- 3.5.7 and previous refreshes
- DB2 Recovery Expert for LUW
- 5.5.0.1
- 5.5.0.1 IF1
- 5.5.0.1 IF2
- 5.5.0.1 IF3
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-samba-affects-ibm-spectrum-scale-smb-protocol-access-method-cve-2021-23192/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-impacts-ibm-watson-knowledge-catalog-in-cloud-pak-for-data-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-db2-recovery-expert-for-linux-unix-and-windows/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-pak-for-data-system-1-0/
Rate the content
Share the page
