IBM Updates
2013Warning Date
Severity Level
Warning Number
Target Sector
28 November, 2021
● High
2021-3942
All
Description:
IBM has released a security update to address several vulnerabilities in its products:
- IBM Cloud Pak System
- 2.3
- Curam SPM
- 8.0.0
- 7.0.11
- Netcool Operations Insight
- 1.6
- IBM Netcool Agile Service Manager
- 1.1
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Bypass security restrictions
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates, the most important ones:
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-ibm-sdk-java-affects-ibm-cloud-pak-system-cve-2020-27221-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-jsoup-may-affect-cram-social-program-management-cve-2021-37714/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-affect-ibm-netcool-agile-service-manager-2/