The official site for Saudi CERT
Your review has been sent successfully
IBM Updates
2503
Warning Date
Severity Level
Warning Number
Target Sector
22 December, 2021
● Critical
2021-4127
All
Description:
IBM has released security updates to address several vulnerabilities in the following products:
Products that affected by the Apache Log4j vulnerability:
- IBM Cognos Controller
- 10.4.2
- IBM Planning Analytics Workspace
- 2.0.57 or higher
- Business Monitor - WebSphere Application Server V8.5.5
- V8.5.7
- V8.5.6
- V8.5.5
- IBM Secure External Authentication Server
- 6.0.2
- 6.0.3
- IBM Spectrum Scale
- 5.0.5.0 – 5.0.5.11
- 5.1.0.0 – 5.1.2.1
- IBM Spectrum Scale on AWS Marketplace Spectrum Scale
- 5.0.5.3 BYOL v1.3.1
- IBM Spectrum Scale container native storage access
- All version
- IBM Cognos Analytics
- 11.2.x
- 11.1.x
- 11.0.6 - 11.0.13 FP4
- Db2 Big SQL
- 5.0.1.0
- 5.0.2.0
- 5.0.3.0
- 5.0.4.0
- 6.0.0.0
- 7.1.0.0
- Db2 Big SQL on Cloud Pak for Data
- 7.1.1 (on CP4D 3.5.0)
- 7.2.0 (on CP4D 4.0.0)
- 7.2.1 (on CP4D 4.0.1)
- 7.2.2 (on CP4D 4.0.2)
- 7.2.3 (on CP4)
- IBM Cloud Pak for Multicloud Management Security Services
- Before 2.3 Fixpack 3
- IBM Cloud Pak for Multicloud Management Monitoring
- Before 2.3 Fixpack 3
- SPSS Statistics Subscription
- 1.0
- IBM Event Streams
- 2019.4.1
- 2019.4.2
- 2019.4.3
- 2019.4.4
- 10.0.0
- 10.1.0
- 10.2.0
- 10.3.0
- 10.3.1
- 10.4.0
- IBM® Db2®
- IBM Sterling Secure Proxy
- 3.4.3.2
- IBM Secure Proxy
- 6.0.2
- 6.0.3
- QRadar User Behavior Analytics
- 1.0.0 – 4.1.4
- IBM App Connect Enterprise
- V11.0.0.7 - V11.0.0.15
- V12.0.1.0 - V12.0.3.0
- SPSS Statistics
- 28.0.1
- 27.0.1
- 26.0
- 25.0
- IBM Spectrum Protect for Space Management
- 8.1.11.0-8.1.13.0
- 7.1.8.10-7.1.8.11
- IBM Spectrum Protect Backup-Archive Client
- 8.1.11.0-8.1.13.0
- 7.1.8.10-7.1.8.12
- IBM Spectrum Protect for Virtual Environments: Data Protection for VMware
- 8.1.11.0-8.1.13.0
- 7.1.8.10-7.1.8.12
- IBM Spectrum Protect for Virtual Environments: Data Protection for Hyper-V
- 8.1.11.0-8.1.13.0
- IBM Observability with Instana (OnPrem)
- All
- UCV – UrbanCode Velocity
- 1.0 – 2.5.1
- IBM OpenPages for IBM Cloud Pak for Data
- 8.204.0
- IBM Integrated Analytics System – Db2 warehouse container
- 1.0.19.5-1.0.26.1
- API Connect
- V10.0.1.0-V10.0.3
- V10.0.1.1-V10.0.1.5
- V2018.4.1.0-2018.4.1.17
- V5.0.0.0-5.0.8.12
- IBM Control Center
- 6.1.3
- 6.2.1.0
- 6.2.0.0
- IBM Tivoli Network Manager
- 4.2.0.9 (Build#99)
- 4.2.0.10
- 4.2.0.11
- 4.2.0.12
- 4.2.0.13
- IBM Spectrum LSF Suite
- 10.2
- IBM Spectrum Suite for HPA
- 10.2
- IBM Cloud Private
- 3.2.1 CD
- 3.2.2 CD
- IBM Informix Dynamic Server on Cloud Pak for Data
- All
- IBM Global High Availability Mailbox
- 6.0.3-6.1.1.0
- IBM Elastic Storage System
- 6.0.0 – 6.0.2.2
- 6.1.0 – 6.1.1.2
- ICP – Watson AIOps
- 1.0.x
- 2.0.x
- 2.1.x
- 3.x
- Cloud Pak for Data
- 4.0
- IBM Db2 Web Query for i
- 2.3.0
- 2.3.1
- Resilient OnPrem
- IBM Security SOAR
- R9.1
- 89.1x.0.0
- R9.2
- 89.2x.0.0
- R8.5
- 88.5x.x.x
- CP4BA – Workflow Process Services
- 21.0.2
- Cloud Foundry Migration Runtime
- All
- Netcool Operations Insight
- 1.4.x
- 1.5.x
- 1.6.x
- IBM Spectrum Copy Data Management
- 2.2.14.0
- IBM Spectrum LSF Application Center
- 10.2
- IBM Spectrum LSF Explorer
- 10.2
- IBM Sterling Partner Engagement Manager Standard and Essentials
- 6.1.2.3.2 / 6.2.0.1.1
- IBM Cloud Object Storage File Access (COS FA)
- 7.0.0
- IBM Financial Transaction Manager for SWIFT Services for Multiplatforms
- 3.2
- Capilano (Installation Manager)
- 1.9.x
- BM Java SDK shipped with IBM WebSphere Application Server Patterns
- 1.0.0.0 - 1.0.0.7
- 2.2.0.0 - 2.3.3.4
- IBM Elastic Storage System
- 6.1.0 – 6.1.1.2
- 6.0.0 – 6.0.2.2
- Cloud Pak for Security (CP4S)
- v1.7.2.0 and earlier
- IBM Business Automation Workflow
- V21.0
- V20.0
- V19.0
- V18.0
- IBM Business Process Manager
- V8.6
- V8.5
- IBM Case Manager
- 5.3CD
- 5.2.1
- 5.2.0
- 5.1.1
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Cross-site scripting (XSS)
- Information disclosure
- Redirect a user to a malicious web page
- Remote code execution
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cognos-controller-10-4-2-if16-apache-log4j-vulnerability-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-planning-analytics-2-0-apache-log4j-vulnerabilities-cve-2021-45046-cve-2021-45105
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-have-been-identified-in-ibm-websphere-application-server-shipped-with-ibm-business-monitor-cve-2021-44228
- https://www.ibm.com/blogs/psirt/security-bulletin-cross-site-scripting-and-session-fixation-vulnerability-in-ibm-financial-transaction-manager-for-swift-services/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-secure-external-authentication-server-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-scale-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cognos-analytics-apache-log4j-vulnerability-cve-2021-44228-4/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-runtime-affects-ibm-installation-manager-and-ibm-packaging-utility-7/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-db2-big-sql-for-hortonworks-data-platform-for-cloudera-data-platform-private-cloud-and-ibm-db2-big-sql-on-cloud-pak-for-data-are-affected-by-critical-vulnerability-in-log4j/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cloud-pak-for-multicloud-management-has-applied-security-fixes-for-its-use-of-log4j-for-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cognos-controller-10-4-2-if16-apache-log4j-vulnerability-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-log4shell-vulnerability-affects-ibm-spss-statistics-subscription-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-node-js-affecting-ibm-event-streams-cve-2021-22960-and-cve-2021-22959-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-apache-log4j-affects-some-features-of-ibm-db2-cve-2021-45046-cve-2021-45105/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-secure-proxy-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-apache-log4j-cve-2021-45046-impacts-ibm-qradar-user-behavior-analytics-add-on-to-ibm-qradar-siem/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-apache-log4j-affect-ibm-app-connect-enterprise-v11-v12-cve-2021-44228-3/
- https://www.ibm.com/blogs/psirt/security-bulletin-log4shell-vulnerability-affects-ibm-spss-statistics-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-for-space-management-cve-2021-44228-5/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-protect-backup-archive-client-and-ibm-spectrum-protect-for-virtual-environments-cve-2021-44228-5/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilitiy-in-apache-log4jaffects-ibm-observability-with-instana-server-and-agents-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-urbancode-velocity-cve-2021-44228-apache-log4j/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-affected-by-potential-buffer-overflow-in-golang-cve-2021-38297-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-openpages-for-ibm-cloud-pak-for-data-has-addressed-apache-log4j-vulnerability-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-event-streams-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-integrated-analytics-system-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-private-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-affected-by-multiple-vulnerabilities-in-golang-3/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-api-connect-apic-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-sterling-control-center-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-tivoli-network-manager-ip-edition-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-apache-log4j2-cve-2021-4104-cve-2021-44228-cve-2021-45046-affect-ibm-spectrum-lsf-suite-and-ibm-spectrum-lsf-suite-for-hpa/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-private-cve-2021-45105/
- https://www.ibm.com/blogs/psirt/security-bulletin-log4j-vulnerability-cve-2021-44228-in-ibm-informix-dynamic-server-in-cloud-pak-for-data/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-cve-2021-4104/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-sterling-global-mailbox-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-there-is-a-vulnerability-in-the-systemd-used-in-ibm-elastic-storage-system/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-pak-for-watson-aiops-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-cloud-pak-for-data-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-ibm-secure-external-authentication-server-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-cve-2021-44228-4/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-affected-by-multiple-vulnerabilities-in-the-java-runtime-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-some-features-of-ibm-db2-on-openshift-and-ibm-db2-and-db2-warehouse-on-cloud-pak-for-data-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-apache-log4j-affect-ibm-db2-web-query-for-i/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-dependency-of-elasticsearch-as-used-in-ibm-resilient-soar-is-vulnerable-to-apache-log4j-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-ui-affected-by-multiple-node-package-vulnerabilities-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-ds8000-hardware-management-console-is-vulnerable-to-apache-log4j-cve-2021-45105-and-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-is-affected-by-multiple-vulnerabilities-in-the-java-runtime-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affects-websphere-application-server-october-2021-cpu-that-is-bundled-with-ibm-websphere-application-server-patterns/
- https://www.ibm.com/blogs/psirt/security-bulletin-log4j-cve-2021-44228-vulnerability-affects-ibm-cloud-pak-for-business-automationcp4ba-workflow-process-service/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cognos-analytics-apache-log4j-vulnerability-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-redis-affecting-the-ibm-event-streams-ui-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-affects-watson-studio-in-cloud-pak-for-data-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-foundry-migration-runtime-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-event-streams-is-potentially-affected-by-multiple-node-vulnerabilities-3/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-apache-log4j-affect-ibm-app-connect-enterprise-v11-v12-and-ibm-integration-bus-cve-2021-4104/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-afffects-ibm-secure-proxy-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-security-bulletin-vulnerability-in-apache-log4j-affects-netcool-operation-insight-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-cloud-private-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-there-are-multiple-vulnerabilities-in-the-linux-kernel-used-in-ibm-elastic-storage-system-6/
- https://www.ibm.com/blogs/psirt/security-bulletin-cloud-pak-for-security-uses-packages-that-are-vulnerable-to-cves/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j-affects-ibm-spectrum-copy-data-management-cve-2021-44228-3/
- https://www.ibm.com/blogs/psirt/an-update-on-the-apache-log4j-cve-2021-44228-vulnerability/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-has-been-identified-in-ibm-websphere-application-server-shipped-with-ibm-digital-business-automation-workflow-family-products-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-websphere-service-registry-and-repository-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-apache-log4j2-affect-ibm-spectrum-lsf-explorer-and-ibm-spectrum-lsf-application-center/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cloud-pak-for-applications-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cloud-pak-for-applications-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-apache-log4j2-affect-ibm-spectrum-lsf-explorer-and-ibm-spectrum-lsf-application-center-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-apache-log4j2-affects-ibm-spectrum-lsf-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-security-vulnerability-has-been-identified-in-ibm-websphere-application-server-shipped-with-ibm-case-manager-cve-2021-4104-cve-2021-45046/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-websphere-hybrid-edition-is-vulnerable-to-arbitrary-code-execution-due-to-apache-log4j-cve-2021-44228/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerability-cve-2021-45046-affects-ibm-sterling-partner-engagement-manager/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-log4j-vulnerabilities-cve-2021-45105-and-cve-2021-45046-affect-ibm-cloud-object-storage-file-access/
For the latest updates on IBM products being affected by the Apache Log4j vulnerability:
Last updated at 22 December, 2021
Rate the content
Share the page
