Critical Severity

Security Bulletin: Multiple Security Vulnerabilities Have been addressed in IBM Security Access Manager

Share this post:

Multiple Security Vulnerabilities have been fixed in the IBM Security Access Manager (ISAM) version 9.0.7.2

CVE(s): CVE-2019-10208, CVE-2020-25694, CVE-2020-25695, CVE-2021-29425, CVE-2020-13956, CVE-2020-25649, CVE-2021-32027, CVE-2021-27568, CVE-2020-28491

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
ISAM 9.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6502211
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165072
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/191770
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/191771
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199852
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/189572
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/192648
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/202823
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197316
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197038

More stories

Security Bulletin: Vulnerability in Apache Log4j may affect Cúram Social Program Management (CVE-2019-17571)

Nov 29, 2021 7:01 pm EST | Critical Severity

IBM Cúram Social Program Management uses the Apache Log4j libraries, for which there is a publicly known vulnerability. For this vulnerability, Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by improper deserialization of untrusted data in SocketServer. ...read more


Security Bulletin: Vulnerability in IBM SDK Java affects IBM Cloud Pak System (CVE-2020-27221)

Nov 26, 2021 7:00 pm EST | Critical Severity

Vulnerability in IBM SDK Java affects IBM Cloud Pak System. OS Image for Red Enterprise Linux shipped with Cloud Pak System addressed this vulnerability. ...read more


Security Bulletin: Multiple vulnerabilities in OpenSSL affects IBM InfoSphere Information Server

Nov 16, 2021 7:01 pm EST | Critical Severity

Multiple vulnerabilities in OpenSSL used by IBM InfoSphere Information Server were addressed. ...read more