High Severity

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Share this post:

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.

CVE(s): CVE-2020-7226, CVE-2021-29425, CVE-2021-28165, CVE-2021-28169, CVE-2021-28163, CVE-2021-22696, CVE-2020-13954, CVE-2018-8029, CVE-2020-9492, CVE-2018-11768, CVE-2017-15713, CVE-2018-18751, CVE-2019-9924, CVE-2021-3715, CVE-2020-27777, CVE-2021-22555, CVE-2021-29154, CVE-2021-29650, CVE-2021-32399

Affected product(s) and affected version(s):

IBM QRadar SIEM 7.3.0 to 7.3.3 Fix Pack 9

IBM QRadar SIEM 7.4.0 to 7.4.3 Fix Pack 2

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6520472
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/175399
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199852
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199305
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/203492
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199303
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199335
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/191650
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161812
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/195656
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/168305
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138064
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152105
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158906
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/208836
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/192283
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/204997
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199609
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199201
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/201653

More stories

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM i

Jan 21, 2022 7:00 pm EST | High Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ used by IBM i. IBM i has addressed the applicable CVEs. ...read more

Security Bulletin: IBM QRadar hardware appliances are vulnerable to Intel privilege escalation (CVE-2021-0144)

Jan 21, 2022 7:00 pm EST | High Severity

IBM QRadar hardware appliances are vulnerable to Intel privilege escalation ...read more

Security Bulletin: IBM Cognos Controller has addressed multiple vulnerabilities

Jan 20, 2022 7:00 pm EST | High Severity

This Security Bulletin addresses multiple vulnerabilities that have been remediated in IBM Cognos Controller 10.4.0 IF11, 10.4.1 IF12 and 10.4.2 IF17. There are multiple vulnerabilities in IBM® Runtime Environment Java™ used by IBM Cognos Controller. The applicable CVEs have been addressed by upgrading to IBM® Runtime Environment Java™ Version 8 Service Refresh 6 Fix Pack 15. If you run your own Java code using IBM® Runtime Environment Java™ delivered with this product, you should evaluate your code to determine whether additional Java vulnerabilities are applicable to your code. For a complete list of vulnerabilities, refer to the "IBM Java SDK Security Bulletin", located in the References section for more information. There are vulnerabilities in IBM WebSphere Application Server Liberty used by IBM Cognos Controller. The applicable CVEs have been addressed by upgrading to IBM WebSphere Application Server Liberty XML External Entity (XXE), Authentication Bypass, External (XXE) and Modification of Assumed-Immutable Data (MAID) vulnerabilities have also been addressed in applicable versions. Please note that IBM Cognos Controller 10.4.2 IF17 also addresses Apache Log4j vulnerabilities CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832. (See References). ...read more