IBM has published a security advisory highlighting vulnerabilities in several products between February 9th, 2026 – February 15th, 2026. It is recommended that you take the necessary precautions by ensuring your products are always updated.
- Business Automation Workflow – versions 24.0.1.0 and 25.0.0.0
- IBM Business Automation Workflow Enterprise Service Bus – versions V24.0.0 to V24.0.1
- IBM Business Automation Workflow traditional – versions V25.0.0 to V25.0.1
- IBM Concert Software – versions 1.0.0 to 2.1.0
- IBM Financial Transaction Manager for ACH and Check Services – versions 3.0.0.0 to 3.0.5.4 iFix 27
- IBM Financial Transaction Manager for RedHat OpenShift – multiple versions
- IBM Operational Decision Manager – multiple versions
- IBM Sterling External Authentication Server – versions 6.1.0.0 to 6.1.0.3
- IBM Sterling Secure Proxy – versions 6.1.0.0 to 6.1.0.2, versions 6.2.0.0 to 6.2.0.2
- IBM webMethods Adapter 10.3 for Cmis - multiple versions
- IBM webMethods Adapter 10.5 for Alfresco – multiple versions
- IBM webMethods Adapter 10.5 for Documentum - multiple versions
- IBM webMethods Adapter 8.2 for Salesforce – multiple versions
- IBM webMethods Adapter 9.8 for HDFS – multiple versions
- IBM webMethods Integration (on prem) – versions 11.1 to IS_11.1_Core_Fix8
- z/Transaction Processing Facility – version 1.1
For more information on these updates, you can follow this URL: IBM Product Security Incident Response
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: IBM Advisory
References