High Severity

Security Bulletin: IBM QRadar Network Packet Capture is vulnerable to using components with known vulnerabilities

Share this post:

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.

CVE(s): CVE-2021-25215, CVE-2020-25648, CVE-2020-25692, CVE-2020-8625, CVE-2021-27363, CVE-2021-27364, CVE-2021-27365

Affected product(s) and affected version(s):

IBM QRadar Network Packet Capture 7.3.0 – 7.3.3 Patch 6

IBM QRadar Network Packet Capture 7.4.0 – 7.4.3 GA

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6470631
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/200960
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190416
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/191968
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/196959
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197857
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197858
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197859

More stories

Security Bulletin: IBM Security Risk Manager on CP4S is affected by multiple vulnerabilities

Oct 18, 2021 8:00 pm EDT | High Severity

IBM Security Risk Manager on CP4S has addressed the following vulnerabilities: ...read more


Security Bulletin: IBM Security Risk Manager on CP4S is affected by multiple vulnerabilities (CVE-2020-15168, CVE-2021-29912)

Oct 18, 2021 8:00 pm EDT | High Severity

IBM Security Risk Manager on CP4S has addressed the following vulnerabilities: ...read more


Security Bulletin: A vulnerability in Spring Framework affects IBM Watson Machine Learning Accelerator

Oct 15, 2021 8:01 pm EDT | High Severity

A vulnerability exists in Spring Framework version used by IBM Watson Machine Learning Accelerator. Spring framework upgrade to version 5.2.15 which resolves these vulnerabilities, is available on IBM Fix Central. ...read more