High Severity

IBM Security Bulletin: Multiple Db2 vulnerabilities affect the IBM Spectrum Protect Server

Share this post:

The IBM Spectrum Protect Server is affected by multiple IBM Db2 vulnerabilities that could allow local users to overwrite files owned by the Db2 instance owner, execution of arbitrary code on the system, or an elevation of privileges.

CVE(s): CVE-2018-1452, CVE-2018-1451, CVE-2018-1449, CVE-2018-1450, CVE-2018-1459, CVE-2018-1565, CVE-2018-1515, CVE-2018-1488, CVE-2018-1544, CVE-2018-1566, CVE-2018-1487

Affected product(s) and affected version(s):

These vulnerabilities affect the IBM Spectrum Protect Server 8.1.0.0 through 8.1.6.0.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10743215
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140047
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140046
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140044
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140045
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140210
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143022
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141624
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140973
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142648
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143023
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140972

More stories

IBM Security Bulletin: Open Source Python-paramiko vulnerability affects IBM Netezza Host Management.

Dec 11, 2018 9:02 am EST | High Severity

Open Source Python-paramiko is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVE. CVE(s): CVE-2018-1000805 Affected product(s) and affected version(s): IBM Netezza Host Management 5.4.5.0 – 5.4.22.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10787453X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151370 ...read more


IBM Security Bulletin: Potential Remote code execution vulnerability in WebSphere Application Server (CVE-2018-1904)

Dec 11, 2018 9:01 am EST | High Severity

There is a potential remote code execution vulnerability in WebSphere Application Server (CVE-2018-1904) CVE(s): CVE-2018-1904 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10738735X-Force ...read more


IBM Security Bulletin: Vulnerability in BIND affects Power Hardware Management Console (CVE-2018-5740)

Dec 11, 2018 9:01 am EST | High Severity

Berkeley Internet Name Domain (BIND) is used by Power Hardware Management Console (HMC). HMC has addressed the applicable CVE CVE(s): CVE-2018-5740 Affected product(s) and affected version(s): Power HMC V8.6.0.0 Power HMC V8.7.0.0 Power HMC V9.1.910.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10741077X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148131 ...read more