Lucene search
IBM09CD81CAD88D5272A1898D3B104B0A76C75C4D6F24390C322F2B3A9929DF7F0FHistoryJun 16, 2018 - 10:05 p.m.
Security Bulletin: IBM Data Risk Manager has released VM v2.0.1 in response to the vulnerability known as Spectre.
2018-06-1622:05:23
www.ibm.com
25
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
Summary
IBM has released the following VM v2.0.1 for IBM Data Risk Manager in response to CVE-2017-5753 and CVE-2017-5715.
Vulnerability Details
CVEID: CVE-2017-5753
CVEID: CVE-2017-5715
Affected Products and Versions
IBM Data Risk Manager - 2.0.0
Remediation/Fixes
Customers must install IBM Data Risk Manager - 2.0.1 available to entitled customers on Passport Advantage.
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm data risk manager | eq | any |
Related
threatpost
threatpost
Apple Releases Spectre Patches for Safari, macOS and iOS
2018-01-08 16:57:57
Experts Weigh In On Spectre Patch Challenges
2018-01-07 23:21:34
nessus
nessus
vmware
vmware
kaspersky
kaspersky
KLA11173 OSI vulnerability in VMware Products
2018-01-09 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3542-1)
2018-01-23 00:00:00
Fedora Update for webkitgtk4 FEDORA-2018-0590e4af13
2018-01-13 00:00:00
Fedora Update for webkitgtk4 FEDORA-2018-690989736a
2018-01-19 00:00:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2018-01-11 00:00:00
Linux kernel vulnerabilities
2018-02-22 00:00:00
Linux kernel (KVM) vulnerabilities
2018-01-29 00:00:00
apple
apple
About the security content of iOS 11.2.2
2018-01-08 00:00:00
About the security content of iOS 11.2.2 - Apple Support
2018-01-08 10:30:27
About the security content of macOS High Sierra 10.13.2 Supplemental Update
2018-01-08 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-01-05 00:00:00
msrc
msrc
Speculative Execution Bounty Launch
2018-03-15 00:00:04
fedora
fedora
[SECURITY] Fedora 27 Update: webkitgtk4-2.18.5-1.fc27
2018-01-12 14:44:12
[SECURITY] Fedora 26 Update: webkitgtk4-2.18.5-1.fc26
2018-01-18 21:11:25
mageia
mageia
Updated kernel packages fix security vulnerabilities
2018-02-11 21:42:57
Updated webkit2 packages fix security vulnerabilities
2018-01-14 19:54:13
Updated nvidia-current packages mitigates security issues
2018-01-13 17:28:36
thn
thn
New SpookJS Attack Bypasses Google Chrome's Site Isolation Protection
2021-09-13 07:54:00
[Guide] How to Protect Your Devices Against Meltdown and Spectre Attacks
2018-01-04 21:18:00
packetstorm
packetstorm
Spectre Information Disclosure Proof Of Concept
2018-01-04 00:00:00
zdt
zdt
Multiple CPUs - Spectre Information Disclosure (PoC) Exploit
2018-01-04 00:00:00
photon
photon
ibm
ibm
lenovo
lenovo
Reading Privileged Memory with a Side Channel - US
2018-10-24 12:22:52
Reading Privileged Memory with a Side Channel - Lenovo Support US
2018-10-24 12:22:52
f5
f5
suse
suse
Security update for the Linux Kernel (important)
2018-01-11 18:10:26
Security update for the Linux Kernel (important)
2018-01-16 21:08:19
Security update for the Linux Kernel (important)
2018-01-16 21:08:59
qualysblog
qualysblog
Processor Vulnerabilities – Meltdown and Spectre
2018-01-04 02:17:43
Meltdown/Spectre and Qualys Cloud Platform
2018-01-09 02:36:19
symantec
symantec
Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2018-01-03 00:00:00
SA161: Local Information Disclosure Due to Meltdown and Spectre Attacks
2018-01-08 08:00:00
arista
arista
Security Advisory 0031
2018-01-03 00:00:00
redhat
redhat
(RHSA-2018:0018) Important: kernel security update
2018-01-04 12:42:07
(RHSA-2018:0022) Important: kernel security update
2018-01-04 16:02:23
(RHSA-2018:0047) Important: redhat-virtualization-host security update
2018-01-05 15:36:05
virtuozzo
virtuozzo
Important kernel security update: Fixes for Meltdown and Spectre exploits; new kernel 3.10.0-693.11.6.vz7.40.4, Virtuozzo 7.0 Update 6 Hotfix 3 (7.0.6-710)
2018-01-08 00:00:00
huawei
huawei
Security Advisory - CPU Vulnerabilities 'Meltdown' and 'Spectre'
2018-01-06 00:00:00
Security Advisory - CPU Vulnerabilities Meltdown and Spectre
2018-06-06 00:00:00
redhatcve
redhatcve
CVE-2017-5715
2021-07-20 18:54:09
seebug
seebug
Reading privileged memory with a side-channel
(Meltdown & Spectre)
2018-01-04 00:00:00
nvidia
nvidia
paloalto
paloalto
Information about Meltdown and Spectre findings
2018-01-04 00:00:00
cloudfoundry
cloudfoundry
USN-3540-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-01-23 00:00:00
malwarebytes
malwarebytes
Meltdown and Spectre fallout: patching problems persist
2018-01-11 14:00:00
cisco
cisco
CPU Side-Channel Information Disclosure Vulnerabilities
2018-01-04 22:20:00
kitploit
kitploit
centos
centos
kernel, perf, python security update
2018-01-04 11:36:27
kernel, perf, python security update
2018-01-04 19:46:26
securelist
securelist
IT threat evolution Q1 2018
2018-05-14 10:00:08
citrix
citrix
Citrix Security Updates for CVE-2017-5715, CVE-2017-5753, CVE-2017-5754
2018-01-03 04:00:00
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
Related for 09CD81CAD88D5272A1898D3B104B0A76C75C4D6F24390C322F2B3A9929DF7F0F