IBM’s InfoSphere Information Server, a software used for the extraction and transformation of various data into different forms, has numerous security vulnerabilities. Attackers can exploit these flaws to inject malicious code, bypass security measures, cripple systems, or gain unauthorized access to information.

IBM has issued a total of 21 security warnings. Six of these are classified as highly risky. IT administrators should promptly update their IBM InfoSphere to the latest error-free version.

Affected Versions
According to the warnings, InfoSphere Information Server versions 11.7 are affected by these vulnerabilities. The updated versions 11.7.1.0 and 11.7.1.5 are available for download and patch the security leaks.

Security Warnings from IBM Listed by Severity:

IBM InfoSphere Information Server is affected by a code execution vulnerability in Eclipse JGit, CVSS 8.8.
IBM InfoSphere Information Server is affected by multiple vulnerabilities in Open Container Initiative runc, CVSS up to 8.6.
IBM InfoSphere Information Server is affected by a vulnerability in Oracle MySQL Connectors, CVSS 8.3.
Multiple vulnerabilities in IBM WebSphere Application Server Liberty affect IBM InfoSphere Information Server, CVSS up to 7.5.
IBM InfoSphere Information Server is affected by a vulnerability in XNIO, CVSS 7.5.
IBM InfoSphere Information Server is vulnerable to stored cross-site scripting, CVSS 7.2.
IBM InfoSphere Information Server is vulnerable to stored cross-site scripting, CVSS 6.4.
IBM InfoSphere Information Server is affected by multiple vulnerabilities in OpenSSL, CVSS up to 5.9.
IBM InfoSphere Information Server is affected by a vulnerability in Psf Requests, CVSS 5.6.
IBM InfoSphere Information Server low-level authenticated user can view sensitive information, CVSS 5.4.
IBM InfoSphere Information Server is vulnerable to server-side request forgery, CVSS 5.4.
IBM InfoSphere Information Server is vulnerable to cross-site scripting, CVSS 5.4.
IBM InfoSphere Information Server is vulnerable to stored cross-site scripting, CVSS 5.4.
IBM InfoSphere Information Server is vulnerable to stored cross-site scripting, CVSS 5.4.
IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information, CVSS 5.3.
IBM InfoSphere Information Server is vulnerable due to improper error handling, CVSS 4.3.
IBM InfoSphere Information Server is vulnerable to cross-site request forgery, CVSS 4.3.
IBM InfoSphere Information Server is vulnerable due to information exposure in a URL, CVSS 4.3.
IBM InfoSphere Information Server is vulnerable due to insecure authorization, CVSS 4.0.
IBM InfoSphere Information Server is affected by a vulnerability in tqdm, CVSS 3.9.
IBM InfoSphere Information Server is affected by multiple vulnerabilities in Kubernetes, CVSS up to 3.0.
IT administrators are advised to review these warnings and update their systems accordingly to mitigate the risks associated with these vulnerabilities.