The official site for Saudi CERT
IBM Alert
2476
Warning Date
Severity Level
Warning Number
Target Sector
1 September, 2022
● High
2022-5193
All
Description:
IBM has released a security update to address a vulnerability in the following products:
- IBM MQ Operator
- IBM supplied MQ Advanced container images
- Netcool Operations Insight
Threats:
Attacker could exploit this vulnerability by doing the following:
- Denial of service attack (DoS)
- Excuate arbitaray code
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/blogs/psirt/security-bulletinibm-mq-operator-and-queue-manager-container-images-are-vulnerable-to-multiple-vulnerabilities-from-openssl-pcre2-and-golang-go/
- https://www.ibm.com/blogs/psirt/security-bulletin-netcool-operations-insight-v1-6-5-contains-fixes-for-multiple-security-vulnerabilities/
- https://www.ibm.com/blogs/psirt/security-bulletin-liberty-for-java-for-ibm-cloud-is-vulnerable-to-spoofing-due-to-eclipse-paho-cve-2019-11777/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cognos-analytics-has-addressed-multiple-vulnerabilities-
Rate the content
Share the page
