IBM Product Security Incident Response


Archive

Security Bulletin: Publicly disclosed vulnerabilities from Kernel affect IBM Netezza Host Management

Sep 23, 2021 8:00 pm EDT | High Severity

Kernel is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs. ...read more


Security Bulletin: Publicly disclosed vulnerabilities from Bind affect IBM Netezza Host Management

Sep 23, 2021 8:00 pm EDT | High Severity

Bind is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs. ...read more


Security Bulletin: Public disclosed vulnerability from OpenSSL affects IBM Netezza Host Management

Sep 23, 2021 8:00 pm EDT | High Severity

OpenSSL is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVE. ...read more


Security Bulletin: Rational Asset Analyzer is affected by a WebSphere Application Server vulnerability.

Sep 23, 2021 8:00 pm EDT | Medium Severity

WebSphere Application Server Liberty used by Rational Asset Analyzer is vulnerable to an XML External Entity Injection (XXE) vulnerability. This has been addressed. ...read more


Security Bulletin: Multiple IBM Db2 Server Vulnerabilities Affect IBM Emptoris Program Management

Sep 23, 2021 9:17 am EDT | High Severity

Multiple IBM Db2 Server vulnerabilities affect IBM Emptoris Program Management. ...read more


Security Bulletin: IBM Jazz for Service Management is vulnerable to stored cross-site scripting (CVE-2021-38877)

Sep 22, 2021 8:04 pm EDT | Medium Severity

IBM Jazz for Service Management is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. ...read more


Security Bulletin:Multiple vulnerabilities fixed in IBM Security Verify Bridge – Docker

Sep 22, 2021 8:04 pm EDT | High Severity

Multiple vulnerabilities fixed in IBM Security Verify Bridge - Docker ...read more


Security Bulletin: Cache control vulnerability affects IBM Edge (CVE-2020-4805).

Sep 22, 2021 8:03 pm EDT | Medium Severity

IBM Edge is affected by a cache control vulnerability. IBM Edge has resolved this vulnerability. ...read more


Security Bulletin: IBM Jazz for Service Management is vulnerable to stored cross-site scripting (CVE-2021-29810)

Sep 22, 2021 8:03 pm EDT | Medium Severity

IBM Jazz for Service Management is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. ...read more