تحديثات IBM
1978تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
1 ديسمبر, 2021
● عالي
2021-3954
الكل
الوصف:
أصدرت IBM عدة تحديثات لمعالجة عدد من الثغرات في عدد من منتجاتها، أبرزها:
- Apache CXF
- IBM QRadar SIEM
- OpenSSL
- IBM Integration Bus and IBM App Connect Enterprise v11 & v12
- Linux Kernel
- IBM QRadar SIEM
- Node.js
- IBM Watson Discovery for IBM Cloud Pak for Data
- IBM Integration Bus v10
- Python Pillow
- IBM Watson Discovery for IBM Cloud Pak for Data
- IBM QRadar SIEM Application Framework Base Image
- IBM HTTP Server (powered by Apache) for i
- Apache Commons Compress
- IBM Watson Discovery for IBM Cloud Pak for Data
- IBM WebSphere Application Server used by IBM Match 360
- Axios
- IBM Watson Discovery for IBM Cloud Pak for Data
- PostgreSQL as used by IBM QRadar SIEM
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- هجمة حجب الخدمة (DoS attack)
- كشف غير مصرح به للمعلومات
- تنفيذ برمجيات خبيثة
الإجراءات الوقائية:
يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتIBM توضيحًا لهذه التحديثات:
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-pdfbox-as-used-by-ibm-qradar-siem-is-vulnerable-to-denial-of-service-dos-cve-2021-31811-cve-2021-31812/
- https://www.ibm.com/blogs/psirt/security-bulletin-apache-cxf-as-used-by-ibm-qradar-siem-is-vulnerable-to-denial-of-service-dos-cve-2021-30468/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-is-vulnerable-to-using-weaker-than-expected-cryptographic-algorithms-cve-2021-20400/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-performs-key-exchange-without-entity-authentication-on-inter-host-communications-cve-2021-29779/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-openssl-affect-ibm-integration-bus-and-ibm-app-connect-enterprise-v11-v12-cve-2021-3711/
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-sdk-and-ibm-java-runtime-affects-ibm-qradar-siem-cve-2021-2161/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-is-vulnerable-to-server-side-request-forgery-ssrf-cve-2021-29863/
- https://www.ibm.com/blogs/psirt/security-bulletin-linux-kernel-as-used-by-ibm-qradar-siem-contains-multiple-vulnerabilities/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-node-js-6/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-python-pillow/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-node-js-affect-ibm-integration-bus-v10-cve-2021-3749/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-application-framework-base-image-is-vulnerable-to-using-components-with-known-vulnerabilities/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-affect-ibm-http-server-powered-by-apache-for-i-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-node-js-affect-ibm-integration-bus-v10-cve-2021-37701/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-apache-commons-compress-2/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-is-vulnerable-to-cross-site-scripting-xss-cve-2021-29849/
- https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-websphere-application-server-october-2021-cpu/
- https://www.ibm.com/blogs/psirt/security-bulletin-cve-2021-2341-may-affect-ibm-sdk-java-technology-edition-4/
- https://www.ibm.com/blogs/psirt/security-bulletin-security-vulnerabilities-have-been-identified-in-ibm-websphere-application-server-used-by-ibm-match-360/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-java-6/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-discovery-for-ibm-cloud-pak-for-data-affected-by-vulnerability-in-axios/
- https://www.ibm.com/blogs/psirt/security-bulletin-postgresql-as-used-by-ibm-qradar-siem-is-vulnerable-to-information-disclosure-cve-2021-32028-cve-2021-32027/
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-qradar-siem-is-vulnerable-to-using-components-with-know-vulnerabilities/