IBM Updates
2065Warning Date
Severity Level
Warning Number
Target Sector
8 December, 2021
● High
2021-3995
All
Description:
IBM has released security updates to address several vulnerabilities in several products:
- IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
- 4.0.3
- IBM Business Automation Workflow
- 18.0.0.0 – 21.0.2
- IBM BPM Process Designer
- 8.6-8.6 CF2018.03
- 8.5.0-8.5.7 2017.06
- GDE
- 4.0.0.4
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Obtain sensitive information
- Brute force attack remotely
Best practice and Recommendations:
The CERT team encourages users to review IBM security advisory and apply the necessary updates:
- https://www.ibm.com/support/pages/node/6469691
- https://www.ibm.com/support/pages/node/6524332
- https://www.ibm.com/support/pages/node/6524340
- https://www.ibm.com/support/pages/node/6524334
- https://www.ibm.com/support/pages/node/6523988
- https://www.ibm.com/support/pages/node/6524336
- https://www.ibm.com/support/pages/node/6524338