heise PlusAbo
Anzeige

Security Patch: IBM InfoSphere Information Server Vulnerable to DoS Attacks

Attackers can target systems with IBM InfoSphere Information Server. Admins should act promptly.

listen Print view
A symbolic update button.

(Image: Photon photo/Shutterstock.com)

1 min. read
Security
By

IBM's data integration platform, InfoSphere Information Server, is vulnerable. With a recently released security update, the developers have closed a vulnerability.

DoS vulnerability

According to IBM developers, the security vulnerability (CVE-2025-58754 “high”) is found in the HTTP client Axios, which InfoSphere Information Server uses. If attackers successfully exploit the vulnerability, it leads to DoS conditions, resulting in crashes.

Videos by heise

So far, there are no reports of attacks. However, this can change quickly. IBM developers state that they have resolved the security issue in the following versions:

  • IBM InfoSphere Information Server version 11.7.1.0
  • IBM InfoSphere Information Server version 11.7.1.6
  • IBM Information Server 11.7.1.6 Service pack 1
  • IBM Information Server Microservices tier rollup patch 1 for 11.7.1.6 Service pack 1 installations

Recently, IBM closed two security vulnerabilities in the monitoring tool Tivoli Monitoring

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten