High Severity

IBM Security Bulletin: A security vulnerability has been identified in Ansible shipped with Data Science Experience Local

Share this post:

Ansible is shipped as a component of Data Science Experience Local. Information about a security vulnerability affecting Ansible has been published in a security bulletin.

CVE(s): CVE-2018-10874

Affected product(s) and affected version(s):

Principal Product and Version(s) Affected Supporting Product and Versions
IBM Data Science Experience Local 1.1.0 Ansible 2.5.4
IBM Data Science Experience Local 1.1.1 Ansible 2.5.4
IBM Data Science Experience Local 1.1.2 Ansible 2.5.4
IBM Data Science Experience Local 1.1.3 Ansible 2.5.4
IBM Data Science Experience Local 1.2.0 Ansible 2.5.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10720045
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145689

More stories

IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

Aug 22, 2019 9:01 am EDT | High Severity

IBM Security Access Manager for Enterprise Single-Sign On has addressed the following vulnerability: XML External Entity Injection (XXE) attack when processing XML data. CVE(s): CVE-2019-4513 Affected product(s) and affected version(s):IBM Security Access Manager for Enterprise Single-Sign On 8.2.2 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10996716X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164555 ...read more


IBM Security Bulletin: This Power System update is being released to address CVE-2019-4169

Aug 22, 2019 9:01 am EDT | High Severity

POWER9: In response to an IPMI implementation error, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-4169. CVE(s): CVE-2019-4169 Affected product(s) and affected version(s):P9 OpenPOWER releases OP910 and OP920 are affected. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881209X-Force ...read more


IBM Security Bulletin: A vulnerability in Open Source Libvirt affects IBM Netezza Host Management

Aug 21, 2019 9:01 am EDT | High Severity

Open Source Libvirt is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVE. CVE(s): CVE-2019-10161 Affected product(s) and affected version(s): IBM Netezza Host Management 5.4.17.0 – 5.4.24.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10964462X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162805 ...read more