Vulnerabilities were identified in Sterling Connect Direct Web Services and IBM Connect: Direct Web Services. A remote attacker could exploit some of these vulnerabilities to trigger data manipulation, SQL injection, Denial of Service and elevation of privileges on the targeted system. Vulnerabilities affect Sterling Connect Direct Web Services version 1.0 and IBM Connect Direct Web Services version 6.0.

More information on vulnerabilities and updates is available in IBM Security Bulletin:

• Vulnerabilities in IBM Java Runtime environment – ibm.com
• Vulnerability in PostgreSQL database management system – ibm.com.