Recently, CU*Answers delivered several announcements on required IBM i Access Upgrades for 2024. Since the start of this communication series, CU*Answers has been working with our credit unions to upgrade IBM i Access Client software on your PCs.
Unfortunately, on December 8, 2023, IBM disclosed three vulnerabilities (CVE-2023-45184, CVE-2023-45182, CVE-2023-45185) affecting this software. As a result, we are suspending the rollout and will no longer coordinate upgrades to version 220.127.116.11, which is affected by these vulnerabilities. Instead, we are evaluating the newest version (18.104.22.168) for compatibility issues and are developing an upgrade deployment strategy.
Once this version passes our quality control checks, we will restart our deployment process, beginning with credit unions that have been recently upgraded to 22.214.171.124. If you would like to be an early adopter and help us beta test this version, please reach out to the Help Desk at firstname.lastname@example.org. Please note: if your credit union manages your own upgrades and you have already upgraded to 126.96.36.199, you will need to reapply this latest update.
For more information on these vulnerabilities, click here to visit IBM’s website.