CERT-FR Advisory: Multiple Vulnerabilities Discovered in IBM Products

The French Government’s Computer Security Incident Response Team (CERT-FR) has issued an advisory regarding multiple vulnerabilities discovered in IBM products. These vulnerabilities can have severe consequences, including compromising data confidentiality, potential security policy bypass, remote denial of service, remote arbitrary code execution, and privilege escalation.

Affected Systems:

The following versions are affected:

  • IBM Spectrum Protect Plus versions earlier than
  • IBM Storage Protect Operations Center versions earlier than 8.1.20


Multiple vulnerabilities have been identified in IBM products. Some of these vulnerabilities allow an attacker to escalate privileges, execute arbitrary code remotely, and compromise data confidentiality.


Refer to the vendor’s security bulletin for obtaining patches (see Documentation section).


  • IBM Security Bulletin 7034039, dated September 18, 2023 Link
  • IBM Security Bulletin 7034265, dated September 19, 2023 Link

References (CVEs):

These vulnerabilities have been assigned the following Common Vulnerabilities and Exposures (CVE) references:

Please take immediate action to address these vulnerabilities to ensure the security of your systems and data.