Ref# ADV2026_456 | Date: Jan 5th 2026

---

IBM published a security advisory highlighting vulnerabilities in the following products between December 29, 2025 and January 4, 2026. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• IBM App Connect Enterprise Certified Containers Operands – versions 12.0 LTS: 12.0.12-r1 to 12.0.12-r18 

• IBM App Connect Enterprise Certified Containers Operands – versions CD: 12.0.10.0-r3 to 12.0.12.5-r1, 13.0.1.0-r1 to 13.0.5.2-r1 

• IBM App Connect Operator – versions 12.0 LTS: 12.0.0 to 12.0.18 

• IBM App Connect Operator – versions CD: 11.1.0 to 11.6.0, 12.1.0 to 12.18.0 

• IBM Event Processing – versions 1.0.0 to 1.4.4 

• IBM Maximo Application Suite – Monitor Component – versions 9.1,9.0,8.11 and 8.10 

• IBM Storage Ceph – multiple versions 

• IBM watsonx Assistant Cartridge – versions 4.0 to 5.2.2 

• IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component – versions 5.0 to 5.2.2 

• Maximo AI Service – version 9.1 

For more information on these updates, you can follow this URL: 

• IBM Product Security Incident Response 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

References 

• IBM Security Advisory (January 5th, 2026). Retrieved from IBM. https://www.ibm.com/support/pages/bulletin/ 

• IBM Security Advisory. (January 5th, 2026). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/ibm-security-advisory-av25-867