الموقع الرسمي للمركز الوطني الإرشادي للأمن السيبراني
تنبيه IBM
2825
تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
27 يوليو, 2022
● عالي
2022-5073
الكل
الوصف:
أصدرت IBM عدّة تحديثات لمعالجة عددٍ من الثغرات في المنتجات التالية، أبرزها:
- IBM Rational ClearQuest
- IBM Cloud Pak for Business Automation
- IBM QRadar SIEM
- IBM App Connect Enterprise
- IBM Integration Bus
- Rational Quality Manager (RQM)
- Engineering Test Management (ETM)
- ETM
- RQM
- IBM QRadar SIEM
- IBM Rational ClearQuest
- IBM App Connect Enterprise
- Rational Quality Manager (RQM)
- IBM System Dashboard for Enterprise Content Management
- ETM
- Manage Component
- IBM Maximo Application Suite as a Service
- IBM Maximo Asset Management
- IBM Cloud Pak for Business Automation
- IBM System Dashboard for Enterprise Content Management
التهديدات:
يمكن للمهاجم استغلال الثغرات من خلال تنفيذ التالي:
- تنفيذ برمجيات خبيثة
- هجمة حجب الخدمة (DoS)
- رفع الصلاحيات لزيادة قدرته على التعديل في النظام
- تجاوز القيود الأمنية
الاجراءات الوقائية:
يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت IBM توضيحًا لهذه التحديثات، أبرزها:
- Security Bulletin: Multiple vulnerabilities in the IBM Java Runtime affect IBM Rational ClearQuest (CVE-2021-35561, CVE-2022-21299, CVE-2022-21496) - IBM PSIRT Blog
- Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2022 - IBM PSIRT Blog
- Security Bulletin: IBM QRadar SIEM is vulnerable to local privilege escalation (CVE-2021-39088) - IBM PSIRT Blog
- Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities - IBM PSIRT Blog
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-integration-bus-and-ibm-app-connect-enterprise-are-vulnerable-to-a-denial-of-service-due-to-jackson-databind-cve-2020-36518/
- Security Bulletin: Multiple vulnerabilites affect IBM Engineering Test Management product due to XStream - IBM PSIRT Blog
- Security Bulletin: IBM Maximo Asset Management, IBM Maximo Manage in IBM Maximo Application Suite and IBM Maximo Manage in IBM Maximo Application Suite as a Service may be affected by XML External Entity (XXE) attacks (CVE-2021-33813) - IBM PSIRT Blog
- Security Bulletin: Apache Derby security vulnerabilities in IBM System Dashboard for Enterprise Content Manager (affected, not vulnerable) - IBM PSIRT Blog
- Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2022 - IBM PSIRT Blog
- Security Bulletin: IBM QRadar SIEM is vulnerable to local privilege escalation (CVE-2021-39088) - IBM PSIRT Blog
- Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2022-0778, CVE-2022-1292) - IBM PSIRT Blog
- Security Bulletin: OpenSSL as used by IBM QRadar SIEM is vulnerable to denial of service (CVE-2022-0778) - IBM PSIRT Blog
- Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities - IBM PSIRT Blog
- Security Bulletin: Apache Commons Email as used by IBM QRadar SIEM is vulnerable to information disclosure (CVE-2017-9801, CVE-2018-1294) - IBM PSIRT Blog
- Security Bulletin: IBM Integration Bus and IBM App Connect Enterprise are vulnerable to a denial of service due to jackson-databind (CVE-2020-36518) - IBM PSIRT Blog
- Security Bulletin: Multiple vulnerabilites affect IBM Engineering Test Management product due to XStream - IBM PSIRT Blog
- Security Bulletin: Apache Derby security vulnerabilities in IBM System Dashboard for Enterprise Content Manager (affected, not vulnerable) - IBM PSIRT Blog
قيم المحتوى
شارك الصفحة
