Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM31F68B7BB58984A435894E3513751A284D142799EBE999CBA3ECA2FAA67E6C16
HistoryJan 27, 2021 - 12:05 a.m.

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

2021-01-2700:05:57
www.ibm.com
32
ibm qradar siem
components
known vulnerabilities
oracle mysql
libtiff

EPSS

0.958

Percentile

99.5%

JSON

Summary

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.

Vulnerability Details

CVEID:CVE-2019-2974
**DESCRIPTION:**An unspecified vulnerability in product related to the Server Oracle MySQL component could allow an authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/169280 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-2574
**DESCRIPTION:**An unspecified vulnerability in Oracle MySQL related to the Client C API component could allow an unauthenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/174523 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-2752
**DESCRIPTION:**An unspecified vulnerability in Oracle MySQL related to the Client C API component could allow an authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/179652 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-2780
**DESCRIPTION:**An unspecified vulnerability in Oracle MySQL related to the Server Server: DML component could allow an authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/179680 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-2812
**DESCRIPTION:**An unspecified vulnerability in Oracle MySQL related to the Server Server: Stored Procedure component could allow an authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVSS Base score: 4.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/179710 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2019-14973
**DESCRIPTION:**LibTIFF is vulnerable to a denial of service, caused by an iInteger overflow in the _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 3.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/165333 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)

CVEID:CVE-2019-17546
**DESCRIPTION:**libtiff is vulnerable to a heap-based buffer overflow, caused by an integer overflow in the tif_getimage.c. By persuading a victim to open a specially-crafted file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/168952 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-17498
**DESCRIPTION:**libssh2 is vulnerable to a denial of service, caused by an out-of-bounds read when connecting to a malicious SSH server that sends a disconnect message. A remote attacker could exploit this vulnerability to cause a denial of service or obtain sensitive information.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/169461 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)

CVEID:CVE-2017-15715
**DESCRIPTION:**Apache HTTPD could allow a remote attacker to bypass security restrictions, caused by the < FilesMatch > expression matching ‘$’ to a newline character in a malicious filename instead of the end of the filename. By matching the trailing portion of the filename, an attacker could exploit to bypass security controls that use the < FilesMatch > directive.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/140857 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID:CVE-2018-1283
**DESCRIPTION:**Apache HTTPD could allow a remote attacker to bypass security restrictions, caused by an error when mod_session is configured with SessionEnv on to forward session data to CGI applications. By using a specially crafted “Session” header, an attacker could exploit this vulnerability to modify mod_session data on the system.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/140856 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID:CVE-2018-1303
**DESCRIPTION:**Apache HTTPD is vulnerable to a denial of service, caused by an out-of-bounds memory read error in mod_cache_socache. By sending a specially crafted HTTP request header, an attacker could exploit this vulnerability to cause the service to crash.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/140854 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2019-10098
**DESCRIPTION:**Apache HTTP Server could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the mod_rewrite module. An attacker could exploit this vulnerability using a specially-crafted URL to redirect a victim to arbitrary Web sites.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/165366 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID:CVE-2020-1927
**DESCRIPTION:**Apache HTTP Server could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the mod_rewrite module. An attacker could exploit this vulnerability using a specially-crafted URL to redirect a victim to arbitrary Web sites.
CVSS Base score: 7.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/178936 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N)

CVEID:CVE-2020-1934
**DESCRIPTION:**Apache HTTP Server could allow a remote attacker to execute arbitrary code on the system, caused by the use of uninitialized value in mod_proxy_ftp. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/178937 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-5094
**DESCRIPTION:**E2fsprogs could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an out-of-bounds write in the quota file functionality. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/167547 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H)

CVEID:CVE-2019-5188
**DESCRIPTION:**E2fsprogs could allow a local authenticated attacker to execute arbitrary code on the system, caused by an out-of-bounds write in the directory rehashing function. By using a specially-crafted ext4 directory, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/174075 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H)

CVEID:CVE-2020-0034
**DESCRIPTION:**Google Android could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds read in the vp8_decode_frame of decodeframe.c. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/177658 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1

IBM QRadar SIEM 7.4.0 to 7.4.1 Patch 1

IBM QRadar SIEM 7.3.0 to 7.3.3 Patch 5

Remediation/Fixes

QRadar / QRM / QVM 7.4.2 Patch 2

QRadar / QRM / QVM 7.4.1 Patch 2

QRadar / QRM / QVM 7.3.3 Patch 7

QRadar incident forensics please use the SFS below

QRadar Incident Forensics / QNI 7.4.2 Patch 2

QRadar Incident Forensics / QNI 7.4.1 Patch 2

QRadar Incident Forensics / QNI 7.3.3 Patch 7

Workarounds and Mitigations

None

Related

nessus 89
oraclelinux 4
redhat 6
centos 4
freebsd 2
archlinux 2
openvas 39
debian 3
cloudfoundry 1
fedora 7
amazon 9
ubuntu 3
osv 2
altlinux 7
ibm 11
f5 1
mageia 1
photon 2
kaspersky 2
slackware 1
suse 3
nessus
nessus
CentOS 7 : httpd (CESA-2020:3958)
2020-10-20 00:00:00
Scientific Linux Security Update : httpd on SL7.x x86_64 (20201001)
2020-10-21 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : httpd Multiple Vulnerabilities (NS-SA-2021-0036)
2021-03-10 00:00:00
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2020-10-06 00:00:00
mariadb security and bug fix update
2020-10-06 00:00:00
libtiff security update
2020-10-06 00:00:00
redhat
redhat
(RHSA-2020:3958) Moderate: httpd security, bug fix, and enhancement update
2020-09-29 07:46:42
(RHSA-2020:4026) Moderate: mariadb security and bug fix update
2020-09-29 07:52:34
(RHSA-2020:3902) Moderate: libtiff security update
2020-09-29 07:42:07
centos
centos
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
2020-10-20 18:13:33
mariadb security update
2020-10-20 18:30:49
libtiff security update
2020-10-20 18:24:55
freebsd
freebsd
Apache -- Multiple vulnerabilities
2020-04-01 00:00:00
apache -- multiple vulnerabilities
2018-03-23 00:00:00
archlinux
archlinux
[ASA-202004-14] apache: multiple issues
2020-04-15 00:00:00
[ASA-201804-4] apache: multiple issues
2018-04-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2020-1071)
2020-01-23 00:00:00
Ubuntu: Security Advisory (USN-4158-1)
2019-10-18 00:00:00
Fedora: Security Advisory for libtiff (FEDORA-2020-2e9bd06377)
2020-03-05 00:00:00
debian
debian
[SECURITY] [DSA 4608-1] tiff security update
2020-01-21 21:45:57
[SECURITY] [DSA 4164-1] apache2 security update
2018-04-03 16:02:15
[SECURITY] [DSA 4164-1] apache2 security update
2018-04-03 16:02:15
cloudfoundry
cloudfoundry
USN-4158-1: LibTIFF vulnerabilities | Cloud Foundry
2021-03-09 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: libtiff-4.0.10-8.fc31
2020-03-04 21:31:32
[SECURITY] Fedora 30 Update: e2fsprogs-1.44.6-2.fc30
2020-02-02 01:53:44
[SECURITY] Fedora 31 Update: e2fsprogs-1.45.5-1.fc31
2020-01-21 01:40:08
amazon
amazon
Medium: libtiff
2020-11-14 01:23:00
Medium: libtiff
2020-10-22 18:24:00
Medium: e2fsprogs
2021-01-12 22:51:00
ubuntu
ubuntu
LibTIFF vulnerabilities
2019-10-17 00:00:00
Apache HTTP Server vulnerabilities
2018-04-30 00:00:00
Apache HTTP Server vulnerabilities
2018-04-19 00:00:00
osv
osv
tiff - security update
2020-01-21 00:00:00
apache2 - security update
2018-04-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version 10.1.46-alt1
2020-09-15 00:00:00
Security fix for the ALT Linux 8 package apache2 version 1:2.4.43-alt1
2020-04-09 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.43-alt1
2020-04-08 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Apache HTTP CVE-2019-10098 and CVE-2020-1927.
2021-09-22 23:38:15
Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2020-1927, CVE-2020-1934)
2020-04-17 21:29:53
Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by WebSphere Application Server
2020-04-15 19:22:22
f5
f5
K06014092 : E2fsprogs vulnerabilities CVE-2019-5094 and CVE-2019-5188
2022-03-14 00:00:00
mageia
mageia
Updated apache packages fix security vulnerabilities
2020-04-15 13:12:14
photon
photon
Moderate Photon OS Security Update - PHSA-2020-0079
2020-04-10 00:00:00
Moderate Photon OS Security Update - PHSA-2020-3.0-0079
2020-04-10 00:00:00
kaspersky
kaspersky
KLA12367 Multiple vulnerabilities in Apache HTTP Server
2020-04-01 00:00:00
KLA12361 Multiple vulnerabilities in Apache HTTP Server
2018-03-21 00:00:00
slackware
slackware
[slackware-security] mariadb
2020-05-13 00:12:02
suse
suse
Security update for apache2 (important)
2018-04-05 21:09:45
Security update for apache2 (important)
2018-04-09 03:07:20
Security update for apache2 (important)
2020-05-02 00:00:00

EPSS

0.958

Percentile

99.5%

JSON
Related for 31F68B7BB58984A435894E3513751A284D142799EBE999CBA3ECA2FAA67E6C16
nessus89oraclelinux4redhat6centos4freebsd2archlinux2openvas39debian3cloudfoundry1fedora7amazon9ubuntu3osv2altlinux7ibm11f51mageia1photon2kaspersky2slackware1suse3