High Severity

Security Bulletin: IBM DataPower Gateway enables default IPMI account

Share this post:

If IPMI over LAN Is enabled, a default administrator account is also enabled.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM DataPower Gateway 2018.4.1.0-2018.4.1.5
IBM DataPower Gateway

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1125615

More stories

Security Bulletin: IBM® Db2® is vulnerable to denial of service (CVE-2020-4135).

Feb 18, 2020 7:01 pm EST | High Severity

Db2 is vulnerable to a denial of service. Db2 could allow an attacker to send specially crafted packets to the Db2 server to cause excessive memory usage and cause Db2 to terminate abnormally. ...read more

Security Bulletin: Security vulnerabilities affect multiple IBM Rational products based on IBM Jazz technology

Feb 18, 2020 7:00 pm EST | High Severity

Multiple security vulnerabilities affect components used by the following products that may affect those products: Collaborative Lifecycle Management (CLM), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rational Team Concert (RTC), Rational Quality Manager (RQM), Rational Rhapsody Design Manager (Rhapsody DM), IBM Rhapsody Model Manager and Rational Software Architect Design Manager (RSA DM). ...read more

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring

Feb 18, 2020 7:00 pm EST | High Severity

There are several vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring (ITM) components. ...read more