IBM Support

Security Bulletin: Apache Tomcat as used in IBM QRadar SIEM is vulnerable to denial of service (CVE-2019-0199)

Created by Glen Bizeau on
Published URL:
https://www.ibm.com/support/pages/node/886317
886317

Security Bulletin


Summary

Open source Apache Tomcat vulnerable to a publicly disclosed vulnerability

Vulnerability Details

CVEID: CVE-2019-0199
Description: Apache Tomcat is vulnerable to a denial of service, caused by the acceptance of streams with excessive numbers of SETTINGS frames and the permitting of clients to keep streams open without reading/writing request data by the HTTP/2 implementation. By sending excessive SETTINGS frames, a remote attacker could exploit this vulnerability to cause a denial of service.
CVSS Base Score: 7.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/158637 for the current score
CVSS Environmental Score: *Undefined
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
 

Affected Products and Versions

IBM QRadar SIEM 7.3.0 - 7.3.2 Patch 1

Workarounds and Mitigations

None

Get Notified about Future Security Bulletins

References

Off

Change History

May 31st, 2019: First Publish

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

Document Location

Worldwide

[{"Product":{"code":"SSBQAC","label":"IBM Security QRadar SIEM"},"Edition":"All Editions","Component":"","Platform":[{"code":"PF016","label":"Linux"}],"Version":"7.3","Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
31 May 2019

UID

ibm10886317