Product	VRMF	Remediation/First Fix
IBM QRadar Network Security	Firmware version 5.4.0	Install Firmware 5.4.0.5 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.4.0.5 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm qradar network securityeq5.4.0

CPE	Name	Operator	Version
	ibm qradar network security	eq	5.4.0

lenovo 2

ibm 26

nessus 64

qualysblog 6

threatpost 3

suse 5

symantec 3

f5 1

ubuntu 7

vmware 2

redhat 23

openvas 22

virtuozzo 4

huawei 2

arista 1

paloalto 1

malwarebytes 2

centos 3

kitploit 1

cisco 1

cloudfoundry 1

nvidia 5

citrix 1

talosblog 1

oraclelinux 2

thn 2

veeam 1

xen 1

cert 1

googleprojectzero 1

redhatcve 1

seebug 1

mageia 1

securelist 1

lenovo

Reading Privileged Memory with a Side Channel - Lenovo Support US

2018-10-24 12:22:52

Reading Privileged Memory with a Side Channel - US

2018-10-24 12:22:52

ibm

Security Bulletin: IBM Information Server on Cloud is affected by the vulnerabilities known as Spectre and Meltdown.

2018-06-16 14:18:58

Security Bulletin: IBM QRadar SIEM has released 7.3.1 Patch 4, and 7.2.8 Patch 13 in response to the vulnerabilities known as Spectre and Meltdown.

2018-08-15 16:21:39

Security Bulletin: IBM Db2 Hosted is affected by the vulnerabilities known as Spectre and Meltdown

2018-06-16 14:18:59

nessus

AIX 7.2 TL 2 : spectre_meltdown (IJ03036) (Meltdown) (Spectre)

2018-01-25 00:00:00

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1236)

2018-09-18 00:00:00

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:0069-1) (Meltdown) (Spectre)

2018-01-12 00:00:00

qualysblog

Apple in the InfoSec Spotlight, as GitHub Falls Prey to Amplified DDoS Attack

2018-03-02 14:48:53

Meltdown/Spectre and Qualys Cloud Platform

2018-01-09 02:36:19

Processor Vulnerabilities – Meltdown and Spectre

2018-01-04 02:17:43

threatpost

Experts Weigh In On Spectre Patch Challenges

2018-01-07 23:21:34

Vendors Share Patch Updates on Spectre and Meltdown Mitigation Efforts

2018-01-04 13:01:52

Google Releases Spectre PoC Exploit For Chrome

2021-03-16 14:01:06

suse

Security update for the Linux Kernel (important)

2018-01-16 21:08:19

Security update for the Linux Kernel (important)

2018-01-11 18:10:26

Security update for the Linux Kernel (important)

2018-01-22 15:08:49

symantec

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability

2018-01-03 00:00:00

Multiple CPU Hardware CVE-2017-5754 Information Disclosure Vulnerability

2018-01-03 00:00:00

SA161: Local Information Disclosure Due to Meltdown and Spectre Attacks

2018-01-08 08:00:00

Side-channel processor vulnerabilities CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754

2018-01-04 04:46:00

ubuntu

Linux kernel vulnerabilities

2018-01-23 00:00:00

Linux kernel (Xenial HWE) vulnerabilities

2018-01-23 00:00:00

Linux kernel vulnerabilities

2018-01-23 00:00:00

vmware

VMware Virtual Appliance updates address side-channel analysis due to speculative execution

2018-02-08 00:00:00

VMware Virtual Appliance updates address side-channel analysis due to speculative execution

2018-02-08 00:00:00

redhat

(RHSA-2018:0496) Important: kernel security and bug fix update

2018-03-13 14:14:17

(RHSA-2018:0182) Important: kernel security and bug fix update

2018-01-25 11:23:54

(RHSA-2018:0047) Important: redhat-virtualization-host security update

2018-01-05 15:36:05

openvas

Mageia: Security Advisory (MGASA-2018-0080)

2022-01-28 00:00:00

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1637)

2020-01-23 00:00:00

Microsoft Windows Speculative Execution Side-Channel Vulnerabilities (KB4073291)

2018-01-22 00:00:00

virtuozzo

Important kernel security update: Fixes for Meltdown and Spectre exploits; new kernel 2.6.32-042stab127.2, Virtuozzo 6.0 Update 12 Hotfix 20 (6.0.12-3690)

2018-01-06 00:00:00

Important kernel security update: Fixes for Meltdown and Spectre exploits; new kernel 3.10.0-693.11.6.vz7.40.4, Virtuozzo 7.0 Update 6 Hotfix 3 (7.0.6-710)

2018-01-08 00:00:00

Important kernel security update: Fixes for Meltdown and Spectre exploits; new kernel 2.6.32-042stab127.2 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

2018-01-06 00:00:00

huawei

Security Advisory - CPU Vulnerabilities 'Meltdown' and 'Spectre'

2018-01-06 00:00:00

Security Advisory - CPU Vulnerabilities Meltdown and Spectre

2018-06-06 00:00:00

arista

Security Advisory 0031

2018-01-03 00:00:00

paloalto

Information about Meltdown and Spectre findings

2018-01-04 00:00:00

malwarebytes

Meltdown and Spectre fallout: patching problems persist

2018-01-11 14:00:00

Meltdown and Spectre: what you need to know

2018-01-04 15:53:24

centos

kernel, perf, python security update

2018-01-04 19:46:26

kernel, perf, python security update

2018-01-04 11:36:27

kernel, perf, python security update

2018-03-14 14:47:28

kitploit

Spectre-Meltdown-Checker - Spectre & Meltdown Vulnerability/Mitigation Checker For Linux

2018-01-08 12:43:00

cisco

CPU Side-Channel Information Disclosure Vulnerabilities

2018-01-04 22:20:00

cloudfoundry

USN-3540-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

2018-01-23 00:00:00

nvidia

Security Bulletin: NVIDIA GeForce Experience (GFE) Security Updates for CPU Speculative Side Channel Vulnerabilities

2018-01-09 00:00:00

Security Bulletin: NVIDIA Driver Security Updates for CPU Speculative Side Channel Vulnerabilities

2018-01-04 00:00:00

Security Bulletin: NVIDIA SHIELD TV Security Updates for CPU Speculative Side Channel Vulnerabilities

2018-01-04 00:00:00

citrix

Citrix Security Updates for CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

2018-01-03 04:00:00

talosblog

Meltdown and Spectre

2018-01-08 09:16:00

oraclelinux

Unbreakable Enterprise kernel security update

2018-01-19 00:00:00

kernel security update

2018-01-04 00:00:00

thn

Meltdown and Spectre CPU Flaws Affect Intel, ARM, AMD Processors

2018-01-03 19:34:00

[Guide] How to Protect Your Devices Against Meltdown and Spectre Attacks

2018-01-04 21:18:00

veeam

Meltdown and Spectre vulnerabilities

2018-01-09 00:00:00

xen

Information leak via side effects of speculative execution

2018-01-03 22:29:00

cert

CPU hardware vulnerable to side-channel attacks

2018-01-04 00:00:00

googleprojectzero

Reading privileged memory with a side-channel

2018-01-03 00:00:00

redhatcve

CVE-2017-5715

2021-07-20 18:54:09

seebug

Reading privileged memory with a side-channel (Meltdown & Spectre)

2018-01-04 00:00:00

mageia

Updated nvidia-current packages mitigates security issues

2018-01-13 17:28:36

securelist

IT threat evolution Q1 2018

2018-05-14 10:00:08

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

JSON

Related for 2A40009A88F7F92C59723B05B8A8BC439ECB104B7E48FAB00AAABF8FE910CEF1