The official site for Saudi CERT
IBM Alert
2806
Warning Date
Severity Level
Warning Number
Target Sector
14 June, 2022
● High
2022-4942
All
Description:
IBM has released security updates to address several vulnerabilities in the following products, mainly:
- IBM Tivoli Netcool/OMNIbus Integration - Transport Module Common Integration Library
- IBM Tivoli Netcool/OMNIbus Integration – Java Netcool Utility Library
- Netcool Operations Insight
- ISIM VA InfoSphere Information Server,
- Information Server on Cloud
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates, mainly:
- An update on the Apache Log4j 2.x vulnerabilities - IBM PSIRT Blog
- Security Bulletin: Multiple vulnerabilities have been identified in Apache Log4j shipped with IBM Tivoli Netcool/OMNIbus Common Integration Libraries (CVE-2021-4104, CVE-2021-45046, CVE-2021-44228) - IBM PSIRT Blog
- Security Bulletin: Netcool Operations Insight v1.6.4 contains fixes for multiple security vulnerabilities. - IBM PSIRT Blog
- Security Bulletin: A security vulnerability has been fixed in IBM Security Identity Manager Virtual Appliance(CVE-2020-0778) - IBM PSIRT Blog
- Security Bulletin: A vulnerability in OpenSSL affects IBM InfoSphere Information Server (CVE-2022-0778) - IBM PSIRT Blog
Rate the content
Share the page
