Low Severity

Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4969)

Share this post:

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerability. The vulnerability is due to a HTTP Strict-Transport-Security header that is missing on pages where users are not authenticated.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Security Identity Governance and Intelligence 5.2.6

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6403257

More stories

Security Bulletin: Vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

Feb 24, 2021 7:00 pm EST | Low Severity

Vulnerabilities in the Linux Kernel such as execution of arbitrary code, denial of service, bypassing security restrictions, and obtaining or disclosing of information may affect IBM Spectrum Protect Plus. ...read more


Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Feb 24, 2021 7:00 pm EST | Low Severity

Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. ...read more


Security Bulletin: A vulnerability in IBM Java Runtime affects IBM MessageGateway (CVE-2020-14781)

Feb 24, 2021 7:00 pm EST | Low Severity

There is a vulnerability in IBM Runtime Environment Java Version 8.0 used by IBM MessageGateway. This issue was disclosed as part of the IBM Java SDK updates in October, 2020. ...read more