Ref# ADV2025_414 | Date: Dec 9th 2025

---

IBM published a security advisory highlighting vulnerabilities in the following product between December 1st and 7th, 2025. It is recommended that you take the necessary precautions by ensuring your product are always updated. 

• IBM AIX – versions 7.2 and 7.3 

• IBM Aspera Shares – versions 1.9.9 to 1.10.1 

• IBM Business Automation Workflow – version 24.0.1 

• IBM Cloud Pak System – version 2.3.6.0 

• IBM Controller – versions 11.1.0 to 11.1.1 

• IBM Guardium Data Security Center – version 3.8.5 

• IBM Jazz Reporting Service – multiple versions 

• IBM Maximo Application Suite Monitor Component – multiple versions 

• IBM Process Mining – version 2.0.3 IF001 and 2.0.3 

• IBM Use Case Manager App – versions 1.0.0 to 4.0.0 

• IBM VIOS – versions 3.1 and 4.1 

• IBM Watson Studio on Cloud Pak for Data – versions 4.0.0 to 4.8.9 and versions 5.0.0 to 5.2.1 

For more information on these updates, you can follow this URL: 

• IBM Product Security Incident Response 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

References 

• IBM Security Advisory (December 8th, 2025). Retrieved from IBM. https://www.ibm.com/support/pages/bulletin/ 

  

• IBM Security Advisory. (December 3rd, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/ibm-security-advisory-av25-811