High Severity

IBM Security Bulletin: Multiple vulnerabilities affect IBM PureApplication System

Share this post:

There are multiple vulnerabilities that affect IBM PureApplication System. IBM PureApplication System has addressed vulnerabilities.

CVE(s): CVE-2019-4224, CVE-2019-4241, CVE-2019-4234, CVE-2019-4225, CVE-2019-4235, CVE-2016-5699, CVE-2018-7489, CVE-2018-19362, CVE-2018-19360, CVE-2018-14721, CVE-2017-7525, CVE-2017-17485, CVE-2017-15095, CVE-2018-19361

Affected product(s) and affected version(s):

IBM PureApplication System V2.2.3.0
IBM PureApplication System V2.2.3.1
IBM PureApplication System V2.2.3.2
IBM PureApplication System V2.2.4.0
IBM PureApplication System V2.2.5.0
IBM PureApplication System V2.2.5.1
IBM PureApplication System V2.2.5.2
IBM PureApplication System V2.2.5.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10885602
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159240
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159467
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159416
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159242
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159417
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/114200
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139549
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155093
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155091
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155136
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134639
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137340
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/135123
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155092

More stories

Security Bulletin: IBM i2 Analyst's Notebook Memory Corruption Vulnerabilities

Oct 28, 2020 8:02 pm EDT | High Severity

IBM i2 Analyst's Notebook and Analyst's Notebook Premium suffer from some memory corruption vulnerabilities. ...read more


Security Bulletin: Security Vulnerabilities affect IBM Cloud Pak for Data – Golang (CVE-2020-16845)

Oct 28, 2020 8:01 pm EDT | High Severity

Security Vulnerabilities affect IBM Cloud Pak for Data - Golang (CVE-2020-16845) ...read more


Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Oct 28, 2020 8:01 pm EDT | High Severity

Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker could exploit this vulnerability to cause subsequent upload actions to fail. ...read more