heise PlusAbo
Anzeige

Countless security vulnerabilities in IBM DataPower Gateway closed

Attackers can attack IBM's security and integration platform DataPower Gateway through various means.

listen Print view
A symbolic update reminder.

(Image: Artur Szczybylo/Shutterstock.com)

1 min. read
Security
By

To prevent possible attacks, IBM DataPower Gateway administrators should install the current version. The security patches included close countless vulnerabilities.

Security patch available

In a very long warning message, the developers list the security vulnerabilities. The majority affect the Linux kernel and are classified with the threat level “medium.” However, there are also vulnerabilities classified as “high” (CVE-2025-21999). In this case, attackers can provoke memory errors. This usually leads to crashes. However, malicious code also often gets onto systems.

Videos by heise

So far, IBM has not indicated that attackers are already exploiting the vulnerabilities. The developers state that the security issues have been resolved in IBM DataPower Gateway 10.6.6.0.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten