Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM32C7366BF60AD0A0414388FADDC398AE2C222E692560B44546E29585DCB69B7E
HistoryJul 30, 2021 - 5:04 a.m.

Security Bulletin: IBM QRadar Network Packet Capture is vulnerable to using components with known vulnerabilities

2021-07-3005:04:09
www.ibm.com
23

EPSS

0.187

Percentile

96.3%

JSON

Summary

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.

Vulnerability Details

CVEID:CVE-2021-25215
**DESCRIPTION:**ISC BIND is vulnerable to a denial of service, caused by an assertion failure while answering queries for DNAME records. By sending a query for DNAME records, an attacker could exploit this vulnerability to trigger a failed assertion check and terminate the named process.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/200960 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-25648
**DESCRIPTION:**Mozilla Network Security Services (NSS), as used in Mozilla Firefox is vulnerable to a denial of service, caused by improper handling of CCS (ChangeCipherSpec) messages in TLS. By sending specially-crafted CCS messages, a remote attacker could exploit this vulnerability to cause the system to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/190416 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-25692
**DESCRIPTION:**OpenLDAP is vulnerable to a denial of service, caused by a NULL pointer dereference. By sending a specially crafted TCP packet, a remote attacker could exploit this vulnerability to cause slapd to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/191968 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-8625
**DESCRIPTION:**ISC BIND is vulnerable to a buffer overflow, caused by improper bounds checking by the SPNEGO implementation. By setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration options, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the named process to crash.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196959 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2021-27363
**DESCRIPTION:**Linux Kernel could allow a local authenticated attacker to obtain sensitive information, caused by a kernel pointer leak when show_transport_handle function in drivers/scsi/scsi_transport_iscsi.c is called. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain the address of the iscsi_transport structure information, and use this information to launch further attacks against the affected system.
CVSS Base score: 5.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/197857 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2021-27364
**DESCRIPTION:**Linux Kernel could allow a local authenticated attacker to execute arbitrary commands on the system, caused by a flaw in the iscsi_if_recv_msg function in drivers/scsi/scsi_transport_iscsi.c. By sending specially-crafted Netlink messages, an attacker could exploit this vulnerability to connect to the iscsi NETLINK socket and send arbitrary commands to the kernel.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/197858 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2021-27365
**DESCRIPTION:**Linux Kernel could allow a local authenticated attacker to obtain sensitive information, caused by an issue when certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. By sending a specially-crafted Netlink message, an attacker could exploit this vulnerability to obtain memory information, and use this information to launch further attacks against the affected system.
CVSS Base score: 5.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/197859 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM QRadar Network Packet Capture 7.3.0 - 7.3.3 Patch 6

IBM QRadar Network Packet Capture 7.4.0 - 7.4.3 GA

Remediation/Fixes

IBM QRadar Network Packet Capture 7.3.3 Patch 7

IBM QRadar Network Packet Capture 7.4.3 Patch 1

Workarounds and Mitigations

None

Related

oraclelinux 13
openvas 32
redhat 23
osv 12
nessus 80
cloudfoundry 2
virtuozzo 1
centos 1
ubuntu 6
slackware 1
cloudlinux 1
photon 3
ibm 5
mageia 2
amazon 4
almalinux 1
redhatcve 1
ubuntucve 1
cbl_mariner 1
alpinelinux 2
veracode 2
suse 1
cve 1
fedora 1
gentoo 1
cvelist 1
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2021-03-18 00:00:00
Unbreakable Enterprise kernel security update
2021-03-17 00:00:00
Unbreakable Enterprise kernel-container security update
2021-03-17 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4883-1)
2021-03-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1145-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1075-1)
2021-04-19 00:00:00
redhat
redhat
(RHSA-2021:1071) Important: kernel security and bug fix update
2021-04-06 07:28:22
(RHSA-2021:1171) Important: kernel security and bug fix update
2021-04-13 09:58:53
(RHSA-2021:1373) Important: kernel security and bug fix update
2021-04-27 06:18:00
osv
osv
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
2021-03-29 16:52:26
linux, linux-lts-xenial vulnerabilities
2021-03-25 03:09:57
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.3, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-kvm, linux-oem-5.10, linux-oem-5.6, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-raspi2-5.3 vulnerabilities
2021-03-23 21:57:53
nessus
nessus
RHEL 7 : kernel (RHSA-2021:1373)
2021-04-27 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9113)
2021-03-17 00:00:00
RHEL 7 : kernel (RHSA-2021:1289)
2021-04-20 00:00:00
cloudfoundry
cloudfoundry
USN-4883-1: Linux kernel vulnerabilities | Cloud Foundry
2021-04-14 00:00:00
USN-5410-1: NSS vulnerability | Cloud Foundry
2022-05-26 00:00:00
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel patch 125.0 for Virtuozzo Hybrid Server 7.0, 7.5, Virtuozzo Infrastructure Platform 3.0, and Virtuozzo Hybrid Infrastructure 3.5, 4.0
2021-04-05 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2021-04-10 17:09:38
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-03-25 00:00:00
Linux kernel vulnerabilities
2021-03-29 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2021-04-06 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2021-03-14 04:08:15
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-27364, CVE-2021-27363, CVE-2021-27365
2021-09-21 22:01:04
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0375
2021-03-27 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0332
2021-03-27 00:00:00
Critical Photon OS Security Update - PHSA-2021-0039
2021-06-07 00:00:00
ibm
ibm
Security Bulletin: Publicly disclosed vulnerabilities from Bind affect IBM Netezza Host Management
2021-09-23 04:02:23
Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities (CVE-2020-25648, CVE-2021-31535, CVE-2021-20305, CVE-2020-25692)
2021-11-08 03:57:51
Security Bulletin: IBM MQ Appliance is affected by an OpenLDAP vulnerability (CVE-2020-25692)
2021-07-09 15:21:52
mageia
mageia
Updated kernel packages fix security issues
2021-03-22 20:17:19
Updated openldap packages fix a security vulnerability
2020-11-10 18:20:00
amazon
amazon
Important: kernel
2021-03-18 17:29:00
Important: kernel
2021-03-18 01:13:00
Medium: openldap
2021-05-20 15:59:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2021-04-06 13:33:17
redhatcve
redhatcve
CVE-2020-25692
2020-11-04 14:29:33
ubuntucve
ubuntucve
CVE-2020-25692
2020-10-30 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-25692 affecting package openldap 2.4.50-3
2020-12-16 04:51:58
alpinelinux
alpinelinux
CVE-2020-25692
2020-12-08 01:15:12
CVE-2020-25648
2020-10-20 22:15:43
veracode
veracode
Denial Of Service (DoS)
2020-12-10 16:17:25
Denial Of Service (DoS)
2020-12-04 16:26:27
suse
suse
Security update for openldap2 (important)
2020-11-14 00:00:00
cve
cve
CVE-2020-25692
2020-12-08 01:15:12
fedora
fedora
[SECURITY] Fedora 31 Update: nss-3.58.0-3.fc31
2020-11-13 01:55:03
gentoo
gentoo
Mozilla Network Security Service (NSS): Denial of service
2020-12-23 00:00:00
cvelist
cvelist
CVE-2020-25648
2020-10-20 00:00:00

EPSS

0.187

Percentile

96.3%

JSON
Related for 32C7366BF60AD0A0414388FADDC398AE2C222E692560B44546E29585DCB69B7E
oraclelinux13openvas32redhat23osv12nessus80cloudfoundry2virtuozzo1centos1ubuntu6slackware1cloudlinux1photon3ibm5mageia2amazon4almalinux1redhatcve1ubuntucve1cbl_mariner1alpinelinux2veracode2suse1cve1fedora1gentoo1cvelist1