Low Severity
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4969)
Jan 20, 2021 7:01 pm EST
Categorized: Low Severity
Share this post:
IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerability. The vulnerability is due to a HTTP Strict-Transport-Security header that is missing on pages where users are not authenticated.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM Security Identity Governance and Intelligence | 5.2.6 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6403257
Security Bulletin: Vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus
Feb 24, 2021 7:00 pm EST | Low Severity
Vulnerabilities in the Linux Kernel such as execution of arbitrary code, denial of service, bypassing security restrictions, and obtaining or disclosing of information may affect IBM Spectrum Protect Plus. ...read more
Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.
Feb 24, 2021 7:00 pm EST | Low Severity
Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. ...read more
Security Bulletin: A vulnerability in IBM Java Runtime affects IBM MessageGateway (CVE-2020-14781)
Feb 24, 2021 7:00 pm EST | Low Severity
There is a vulnerability in IBM Runtime Environment Java Version 8.0 used by IBM MessageGateway. This issue was disclosed as part of the IBM Java SDK updates in October, 2020. ...read more