IBM security advisory (AV22-302)

Number: AV22-302
Date: 6 June 2022

Between 30 May 2022 and 5 June 2022 IBM published Security Bulletins to address vulnerabilities in multiple products. Included were critical updates for the following:

  • App Connect Enterprise Certified Container with Operator – version(s) 1.1 to eus, 2.1, 3.0, 3.1, 4.0 and 4.1
  • HMC – version V10.1.1010.0 and later and V9.2.950.0 and later
  • IBM CICS TX Advanced – versions 10.1 and 11.1
  • IBM CICS TX Standard – version 11.1
  • IBM Cloud Private – versions 3.1.0, 3.1.1, 3.1.2, 3.2.0, 3.2.1 CD and 3.2.2 CD
  • IBM Cloud Pak System – multiple versions
  • IBM Common Licensing – versions ART 8.1.6, ART 9.0 and Agent 9.0
  • IBM DataPower Gateway – version 2018.4.1.0 to 2018.4.1.17
  • IBM DataPower Gateway 10.0.1 – versions 10.0.1.0 to 10.0.1.6
  • IBM DataPower Gateway 2018.4.1 – versions 2018.4.1.0 to 2018.4.1.19
  • IBM DataPower Gateway V10CD – versions 10.0.2.0 to 10.0.4.0
  • IBM Edge Application Manger – version 4.3
  • IBM PureData System for Operational Analytics – version 1.1
  • IBM QRadar Data Synchronization App – version 1.0 to 3.0.0
  • IBM Tivoli Monitoring – version 6.3.0 Fix Pack 7 Service Pack 5 and later
  • IBM Watson Machine Learning Accelerator – multiple versions
  • SPSS Collaboration and Deployment Services – versions 8.0, 8.1, 8.1.1, 8.2, 8.2.1, 8.2.2 and 8.3

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

IBM Product Security Incident Response

Spring remote code execution vulnerabilities (AL22-004)

Report a problem on this page
Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: