Your review has been sent successfully

IBM Updates

1609
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Warning Date

Severity Level

Warning Number

Target Sector

20 October, 2020

● Medium

2020-1946

All

Description:

IBM has released security updates to address vulnerabilities in the following products:

  • IBM Spectrum Scale V5.0.0.0 through V5.0.5 and V4.2.0.0 through V4.2.3.22
  • kernel
    • IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2
  • DB2
    • IBM Security Guardium 11.1
  • Linux Kernel
    • IBM Elastic Storage System 6.0.0 – 6.0.1.0
  • IBM Spectrum Scale 5.0.0 – 5.0.5.2
  • IBM Sterling File Gateway 2.2.0.0 – 6.0.3.1
  • IBM Java Runtime
    • IBM WIoTP MessageGateway 5.0.0.1
    • IBM IoT MessageSight 5.0.0.0 and 2.0.0.2
  • IBM Spectrum Scale
    • IBM Elastic Storage 6.0.0 – 6.0.1.0
  • Graphic Process Modeler
    • IBM B2B Sterling Integrator 5.2.0.0 – 6.0.2.2
  • IBM Elastic Storage System 3000 6.0.0 – 6.0.0.2
  • IBM Sterling B2B Integrator 5.2.0.0 – 6.0.3.1

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Denial of service attack (DoS)
  • Cross-site scripting (XSS)
  • SQL injection

Best practice and Recommendations:

The CERT team encourages users to review IBM security advisory and apply the necessary updates:

Last updated at 20 October, 2020

Rate the content

rate-icon
up icon