IBM4446B66258E52980BE4F92BB548BF3B9FBAE34A392EE73EF5AA5BD733DB70724Security Bulletin: Apache POI as used in IBM QRadar SIEM is vulnerable to a denial of service. (CVE-2017-5644)
0.014 Low
EPSS
Percentile
86.3%
Summary
Open Source Apache Poi Vulnerability
Vulnerability Details
CVEID: CVE-2017-5644**
DESCRIPTION:** Apache POI is vulnerable to a denial of service, cause by an XML External Entity Injection (XXE) error when processing XML data. By using a specially-crafted OOXML file, a remote attacker could exploit this vulnerability to consume all available CPU resources.
CVSS Base Score: 5.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/123699> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Affected Products and Versions
ยท IBM QRadar SIEM 7.2 - 7.2.8 Patch 9
ยท IBM QRadar SIEM 7.3 - 7.3.0 Patch 7
Remediation/Fixes
ยท IBM QRadar/QRM/QVM/QRIF 7.2.8 Patch 10
ยท IBM QRadar/QRM/QVM/QRIF/QNI 7.3.1 GA
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security qradar siem | eq | 7.2 | |
| ibm security qradar siem | eq | 7.3 |
Related
0.014 Low
EPSS
Percentile
86.3%