Changeflow GovPing Data Privacy & Cybersecurity IBM SPSS Multiple Vulnerabilities Advisory
Priority review Notice Added Final

IBM SPSS Multiple Vulnerabilities Advisory

Favicon for wid.cert-bund.de CERT-Bund Security Advisories
Published March 16th, 2026
Detected March 17th, 2026
Email

Summary

CERT-Bund has issued a security advisory for IBM SPSS, detailing multiple vulnerabilities with a CVSS score of 8.2. These vulnerabilities allow for remote attacks, including cross-site scripting and denial of service. Affected systems include Linux, UNIX, and Windows.

View original document View source feed page

What changed

CERT-Bund has released advisory WID-SEC-2026-0752 concerning critical vulnerabilities in IBM SPSS versions prior to 9.0.0.0 IF002. The vulnerabilities, rated with a high CVSS Base Score of 8.2, enable remote attackers to conduct cross-site scripting (XSS) attacks, execute denial-of-service (DoS) attacks, and manipulate files. The advisory applies to Linux, UNIX, and Windows operating systems.

Organizations utilizing affected IBM SPSS versions should implement mitigation strategies as outlined by CERT-Bund and IBM to address these security risks. While a specific compliance deadline is not provided, prompt patching or applying vendor-recommended workarounds is crucial to prevent potential exploitation and data compromise. Failure to address these vulnerabilities could lead to significant operational disruption and security breaches.

What to do next

  1. Review IBM SPSS installations for versions prior to 9.0.0.0 IF002.
  2. Implement vendor-provided patches or mitigation strategies to address identified vulnerabilities.
  3. Assess potential impact of vulnerabilities on data integrity and system availability.

Source document (simplified)

[WID-SEC-2026-0752] IBM SPSS: Mehrere Schwachstellen CVSS Base Score 8.2 (hoch) CVSS Temporal Score 7.1 (hoch) Remoteangriff ja Datum 16.03.2026 Stand 17.03.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

  • Linux
  • UNIX
  • Windows

Produktbeschreibung

IBM SPSS ist ein umfassendes Set von Daten- und prognostischen Analyse-Tools für Geschäftsbenutzer, Analysten und Statistik-Programmierer.

Produkte

16.03.2026
- IBM SPSS <9.0.0.0 IF002

Angriff

Angriff

Ein Angreifer kann mehrere Schwachstellen in IBM SPSS ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen, um einen Denial of Service Angriff durchzuführen, und um Dateien zu manipulieren. CVE Informationen Versionshistorie Feedback zum Advisory geben

Related changes

Favicon for wid.cert-bund.de Python Vulnerability Allows Code Execution
Priority review Mar 23, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Langflow Vulnerabilities Advisory
Urgent Mar 23, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de PTC FlexPLM and Windchill Vulnerability Allows Code Execution
Urgent Mar 23, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Microsoft Product Vulnerabilities Detailed
Priority review Mar 23, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Microsoft Edge Vulnerabilities
Priority review Mar 23, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr VMware Product Vulnerabilities - CERTFR Security Advisory
Priority review Mar 23, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity

Source

Favicon for wid.cert-bund.de
CERT-Bund Security Advisories wid.cert-bund.de/content/public/securityAdvisory/rss
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
CERT-Bund
Published
March 16th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Employers Technology companies
Geographic scope
de de

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Topics
Product Security Vulnerability Management

Browse Categories

Agriculture & Food Safety 61 Banking & Finance 230 Consumer Protection 40 Courts & Legal 315 Data Privacy & Cybersecurity 63 Defense & National Security 48 Education 20 Energy 104 Environment 83 Government & Legislation 259 Healthcare 131 Housing 15 Immigration 9 Insurance 56 Labor & Employment 111 Legal & Courts 1 Pharma & Drug Safety 97 Securities & Markets 78 Tax 63 Telecom & Technology 47 Trade & Sanctions 124 Transportation 56

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when CERT-Bund Security Advisories publishes new changes.

Free. Unsubscribe anytime.