Lucene search

IBM3C6ED85B7452AB86D777EE64599097CBDAF7676B4556DDDD7D52198F384A8ACD

HistoryApr 27, 2023 - 2:04 a.m.

Security Bulletin: Vulnerability in libXpm (CVE-2022-4883, CVE-2022-44617 and CVE-2022-46285) affects Power HMC

2023-04-2702:04:18

www.ibm.com

libxpm remote code denial service power hmc fixes ibmcvescve-2022-4883cve-2022-44617cve-2022-46285infiniteloopuncommentwidthremediationfixibm fixcentralv10.2.1030.0ppcaclnpru securityvulnerabilitiespowermanagementconsolecom cve-2022-4883cve-2022-44617cve-2022-46285mb04397mh01954.

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.008

Percentile

82.0%

JSON

Summary

LibXpm has vulnerabilities and is used by Power Hardware Management Console (HMC). HMC has addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2022-4883
**DESCRIPTION:**libXpm could allow a remote attacker to execute arbitrary code on the system, caused by compression commands depend on $PATH. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute program on the system with specific privileges.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/244934 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2022-44617
**DESCRIPTION:**libXpm is vulnerable to a denial of service, caused by runaway loop on width of 0 and enormous height. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service to the calling program.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/244933 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2022-46285
**DESCRIPTION:**libXpm is vulnerable to a denial of service, caused by an infinite loop on unclosed comments. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service to the calling program.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/244932 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Affected Products and Versions

Affected Product(s)	Version(s)
HMC V10.1.1010.0	V10.1.1010.0
HMC V10.2.1030.0	V10.2.1030.0
HMC V9.2.950.0	V9.2.950.0

Remediation/Fixes

The following fixes are available on IBM Fix Central at: <http://www-933.ibm.com/support/fixcentral/>

Product

VRMF

APAR

Remediation/Fix

—|—|—|—

Power HMC

V9.2.950.0 SP3 ppc

MB04397

MH01954

Power HMC

V9.2.950.0 SP3 x86

MB04396

MH01953

Power HMC

V10.1.1020.0 SP1 ppc

MB04388

MF70701

Power HMC

V10.1.1020.0 SP1 x86

MB04387

MF70700

Power HMC

V10.2.1030.0 ppc

MB04401

MF70890

Power HMC

V10.2.1030.0 SP1 x86

MB04400

MF70889

Workarounds and Mitigations

None

Affected configurations

Vulners

Node

ibmhardware_management_consoleMatchany

VendorProductVersionCPE
ibmhardware_management_consoleanycpe:2.3:a:ibm:hardware_management_console:any:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	hardware_management_console	any	cpe:2.3:a:ibm:hardware_management_console:any:::::::*

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.008

Percentile

82.0%

JSON

Related for 3C6ED85B7452AB86D777EE64599097CBDAF7676B4556DDDD7D52198F384A8ACD