No Patch for High-Severity Bug in Legacy IBM System X Servers
Two of IBM’s aging flagship server models, retired in 2020, won’t be patched for a command-injection flaw.
Sep 15, 2021 | IBM
Two of IBM’s aging flagship server models, retired in 2020, won’t be patched for a command-injection flaw.
IBM is warning infosec pros of a hijacking vulnerability in its DB2 database on Windows. In a security bulletin issued Thursday, the company said the issue could allow a locally authenticated attacker to execute arbitrary code...
Sep 15, 2020 | IBM
Two bugs (CVE-2020-4703 and CVE-2020-4711) in IBM’s Spectrum Protect Plus data-storage protection solution could enable remote code execution.
Aug 21, 2020 | IBM
Lack of protections around trace facility gives local users read and write access A bug-hunter has uncovered a vulnerability in IBM’s popular enterprise database which, if left unpatched, could allow a local user to access...
Aug 20, 2020 | IBM
A shared memory vulnerability that IBM addressed in its Db2 data management products could allow malicious local users to access sensitive data. read more
Aug 20, 2020 | IBM
Cybersecurity researchers today disclosed details of a memory vulnerability in IBM’s Db2 family of data management products that could potentially allow a local attacker to access sensitive data and even cause a denial of...
Apr 21, 2020 | IBM
IT giant admits it made ‘a process error, improper response’ to flaw finder IBM has acknowledged that it mishandled a bug report that identified four vulnerabilities in its enterprise security software, and plans to...
Apr 21, 2020 | IBM
IT giant admits it made ‘a process error, improper response’ to flaw finder IBM has acknowledged that it mishandled a bug report that identified four vulnerabilities in its enterprise security software, and plans to...
Apr 21, 2020 | IBM
Three separate flaws can be chained to achieve full system compromise.