IBM has disclosed multiple critical and high-severity flaws across an array of products, the most severe of which exist in its IBM Spectrum Protect tool. The most severe flaw could cause a remote attacker to execute arbitrary code on impacted systems. The worst flaw is a stack-based buffer overflow vulnerability that stems from improper bounds checking in the servers and storage agents that make up Spectrum Protect. Impacted are versions 7.1 and 8.1 of the platform, and users urged to update to version 8.8 or 7.9.9.
Source: https://threatpost.com/ibm-patches-critical-high-severity-flaws-in-spectrum-protect/146201/