Number: AV22-151
Date: 28 March 2022
Between 21 and 27 March 2022 IBM published Security Bulletins to address vulnerabilities in multiple products. Included were critical updates for the following:
- IBM – Apache Log4j Vulnerability - multiple versions and platforms
- IBM Watson Knowledge Catalog in Cloud Pak for Data – multiple versions
- IBM WebSphere Extreme Scale – versions 8.6.1.0 to 8.6.1.5
- Cloudera Data Platform Private Cloud Base for IBM – versions 7.1.6 and 7.1.7
- Db2 Big SQL – multiple versions and platforms
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
IBM – Apache Log4j Vulnerability
IBM Product Security Incident Response
Active Exploitation of Apache Log4j Vulnerability (AL21-019)