Lucene search
IBMAD6A539B5994B7DEA177488D2B7687880F9F5C61B437A1CA470EB4A61AD14F9DHistoryFeb 21, 2022 - 4:46 a.m.
Security Bulletin: App Connect Professional is affected by Quick Emulator vulnerability
2022-02-2104:46:26
www.ibm.com
26
app connect professional
quick emulator
vulnerability
denial of service
memory allocation
fix
7.5.5.0
EPSS
0.007
Percentile
80.5%
Summary
App Connect Professional have addressed the following vulnerability reported in Quick Emulator Library.
Vulnerability Details
CVEID:CVE-2017-15124
**DESCRIPTION:**Quick Emulator (QEMU) is vulnerable to a denial of service, caused by an unbounded memory allocation issue in the VNC server implementation. By connecting to the VNC server with remote VNC client, a remote attacker could exploit this vulnerability to cause the application to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/137387 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| App Connect Professional | 7.5.5.0 |
Remediation/Fixes
| Product | Version | Remediation |
|---|---|---|
| App Connect Professional | 7.5.5.0 | 755 Fixcentral link |
Workarounds and Mitigations
None
Related
nvd
nvd
CVE-2017-15124
2018-01-09 21:29:00
redhat
redhat
(RHSA-2018:3062) Low: qemu-kvm-ma security, bug fix, and enhancement update
2018-10-30 04:14:59
(RHSA-2018:0816) Low: qemu-kvm security, bug fix, and enhancement update
2018-04-10 05:01:42
(RHSA-2018:1113) Moderate: qemu-kvm-rhev security and bug fix update
2018-04-11 17:35:52
cve
cve
CVE-2017-15124
2018-01-09 21:29:00
ubuntucve
ubuntucve
CVE-2017-15124
2018-01-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-16 02:53:05
debiancve
debiancve
CVE-2017-15124
2018-01-09 21:29:00
osv
osv
CVE-2017-15124
2018-01-09 21:29:00
qemu - security update
2018-05-29 00:00:00
nessus
nessus
RHEL 7 : qemu-kvm-ma (RHSA-2018:3062)
2018-10-31 00:00:00
EulerOS Virtualization 2.5.0 : qemu-kvm (EulerOS-SA-2018-1247)
2018-09-18 00:00:00
Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20180410)
2018-05-01 00:00:00
redhatcve
redhatcve
CVE-2017-15124
2017-12-19 09:49:40
prion
prion
Design/Logic Flaw
2018-01-09 21:29:00
cvelist
cvelist
CVE-2017-15124
2018-01-09 21:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1247)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1113)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1144)
2020-01-23 00:00:00
centos
centos
qemu security update
2018-04-26 17:50:14
amazon
amazon
Important: qemu-kvm
2018-06-08 18:29:00
Important: qemu-kvm
2018-06-07 23:41:00
suse
suse
Security update for qemu (important)
2018-03-23 00:07:04
Security update for qemu (important)
2018-03-21 21:07:13
Security update for qemu (important)
2018-03-27 21:08:28
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2018-04-16 00:00:00
qemu security update
2018-11-28 00:00:00
qemu security update
2018-11-20 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2018-04-08 00:00:00
debian
debian
[SECURITY] [DSA 4213-1] qemu security update
2018-05-29 21:25:45
[SECURITY] [DSA 4213-1] qemu security update
2018-05-29 21:25:45
ubuntu
ubuntu
QEMU vulnerabilities
2018-02-20 00:00:00
QEMU regression
2018-03-05 00:00:00
EPSS
0.007
Percentile
80.5%
Related for AD6A539B5994B7DEA177488D2B7687880F9F5C61B437A1CA470EB4A61AD14F9D