Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM538A13AC06ED590D8026CB9F4D04159A3FD23470DC666FA234924DBCAEBE253A
HistoryJan 27, 2022 - 8:10 p.m.

Security Bulletin: IBM QRadar hardware appliances are vulnerable to Intel privilege escalation (CVE-2021-0144)

2022-01-2720:10:35
www.ibm.com
10

0.0004 Low

EPSS

Percentile

12.6%

JSON

Summary

IBM QRadar hardware appliances are vulnerable to Intel privilege escalation

Vulnerability Details

CVEID:CVE-2021-0144
**DESCRIPTION:**Intel Xeon and Intel Core products could allow a local authenticated attacker to gain elevated privileges on the system, caused by insecure default variable initialization in the BSSA DFT feature. An authenticated attacker could exploit this vulnerability to gain higher privileges.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/205386 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H)

Affected Products and Versions

Lenovo SR630 M6 and Lenovo SR650 M6 v1.1.0 - 3.1.0

Lenovo x3550 M5 and Lenovo x3650 M5 v1.0.0 - 6.0.0

Remediation/Fixes

Note: The Lenovo security bulletin affects on-premise QRadar SIEM M5 and M6 appliances. QRadar on Cloud users can ignore this security bulletin.

Please note in order mitigate CVE-2021-0144, microcode will need to be updated on M5 and M6 Appliances. Please see the links below for available microcode updates.

To determine your appliance version see here: <https://www.ibm.com/support/pages/qradar-determine-physical-specifications-qradar-appliances&gt;

7.3

For Lenovo Appliance M6 Firmware installs using ISO/XClarity, see:

Lenovo SR630 M6 and Lenovo SR650 M6 v5.0.0 firmware download

For Lenovo Appliance M6 Firmware installs using USB keys, see:

Lenovo SR630 M6 and Lenovo SR650 M6 v5.0.0 firmware download

For Lenovo Appliance M5 Firmware installs using ISO/IMM, see:

Lenovo x3550 M5 and Lenovo x3650 M5 v8.0.0 firmware download

For Lenovo Appliance M5 Firmware installs using USB keys, see:

Lenovo x3550 M5 and Lenovo x3650 M5v8.0.0 firmware download

M4 appliances do not require a firmware update

7.4

For Lenovo Appliance M6 Firmware installs using ISO/XClarity, see:

Lenovo SR630 M6 and Lenovo SR650 M6 v5.0.0 firmware download

For Lenovo Appliance M6 Firmware installs using USB keys, see:

Lenovo SR630 M6 and Lenovo SR650 M6 v5.0.0 firmware download

For Lenovo Appliance M5 Firmware installs using ISO/IMM, see:

Lenovo x3550 M5 and Lenovo x3650 M5 v8.0.0 firmware download

For Lenovo Appliance M5 Firmware installs using USB keys, see:

Lenovo x3550 M5 and Lenovo x3650 M5v8.0.0 firmware download

M4 appliances do not require a firmware update

For more information on QRadar firmware, see <https://ibm.biz/qradarfirmware&gt;

For information about code signed files from IBM, see <https://ibm.biz/qradarcodesigning&gt;.

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm qradar siemeq7.3
ibm qradar siemeq7.4

Related

intel 2
prion 1
hp 1
lenovo 1
f5 1
ibm 1
redhatcve 1
nvd 1
cve 1
cvelist 1
intel
intel
Intel BSSA DFTΒ Advisory
2021-07-13 00:00:00
2021.2 IPU – BIOS Advisory
2022-02-08 00:00:00
prion
prion
Default configuration
2021-07-14 14:15:00
hp
hp
Intel BSSA DFT July 2021 Security Update
2021-07-13 00:00:00
lenovo
lenovo
Intel BSSA DFT Advisory - Lenovo Support NL
2021-07-13 20:59:00
f5
f5
K08593253 : Intel CPU vulnerability CVE-2021-0144
2021-08-24 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in Intel Xeon affects IBM Cloud Pak System (CVE-2021-0144)
2022-05-02 14:58:19
redhatcve
redhatcve
CVE-2021-0144
2021-07-30 10:20:39
nvd
nvd
CVE-2021-0144
2021-07-14 14:15:08
cve
cve
CVE-2021-0144
2021-07-14 14:15:08
cvelist
cvelist
CVE-2021-0144
2021-07-14 13:23:25

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for 538A13AC06ED590D8026CB9F4D04159A3FD23470DC666FA234924DBCAEBE253A
intel2prion1hp1lenovo1f51ibm1redhatcve1nvd1cve1cvelist1