High Severity

IBM Security Bulletin: Multiple Db2 vulnerabilities affect the IBM Spectrum Protect Server

Share this post:

The IBM Spectrum Protect Server is affected by multiple IBM Db2 vulnerabilities that could allow local users to overwrite files owned by the Db2 instance owner, execution of arbitrary code on the system, or an elevation of privileges.

CVE(s): CVE-2018-1452, CVE-2018-1451, CVE-2018-1449, CVE-2018-1450, CVE-2018-1459, CVE-2018-1565, CVE-2018-1515, CVE-2018-1488, CVE-2018-1544, CVE-2018-1566, CVE-2018-1487

Affected product(s) and affected version(s):

These vulnerabilities affect the IBM Spectrum Protect Server 8.1.0.0 through 8.1.6.0.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10743215
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140047
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140046
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140044
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140045
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140210
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143022
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141624
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140973
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142648
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143023
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140972

More stories

IBM Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU – Apr 2019 – Includes Oracle Apr 2019 CPU affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time

Jul 22, 2019 9:01 am EDT | High Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 ,version 8, that is used by IBM Tivoli Composite Application Manager for Transactions – Robotic Response Time. These issues were disclosed as part of the IBM Java SDK updates in April 2019. CVE(s): CVE-2019-10245, CVE-2019-2684, CVE-2019-2602, CVE-2019-2697, CVE-2019-2698, CVE-2019-2699 Affected product(s) and affected ...read more


IBM Security Bulletin: Vulnerability in IBM Java Runtime affecting Tivoli Netcool/OMNIbus (CVE-2019-2602)

Jul 20, 2019 9:01 am EDT | High Severity

There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 8 that is used by Tivoli Netcool/OMNIbus. This were disclosed as part of the IBM Java SDK update in April 2019. CVE(s): CVE-2019-2602 Affected product(s) and affected version(s): Tivoli Netcool/OMNIbus 8.1.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source ...read more


IBM Security Bulletin: IBM Netcool Agile Service Manager is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)

Jul 19, 2019 9:02 am EDT | High Severity

IBM Netcool Agile Service Manager has addressed the following vulnerability in Apache ZooKeeper. CVE(s): CVE-2019-0201 Affected product(s) and affected version(s): Affected IBM Netcool Agile Service Manager Affected Versions IBM Netcool Agile Service Manager 1.1 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10958553X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161303 ...read more