Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM38CE21C8E36E0D8E13CFDB6726BF7297A06F5BEE727FDC02819987C18B1360E6
HistoryNov 08, 2021 - 3:57 a.m.

Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities (CVE-2020-25648, CVE-2021-31535, CVE-2021-20305, CVE-2020-25692)

2021-11-0803:57:51
www.ibm.com
27

0.116 Low

EPSS

Percentile

95.3%

JSON

Summary

IBM QRadar Network Security has addressed the following vulnerabilities.

Vulnerability Details

CVEID:CVE-2020-25648
**DESCRIPTION:**Mozilla Network Security Services (NSS), as used in Mozilla Firefox is vulnerable to a denial of service, caused by improper handling of CCS (ChangeCipherSpec) messages in TLS. By sending specially-crafted CCS messages, a remote attacker could exploit this vulnerability to cause the system to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/190416 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2021-31535
**DESCRIPTION:**X.Org libX11 is vulnerable to a denial of service, caused by improper input validation by the length of the string parameters. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause emission of extra X protocol requests to the X server, and results in a denial of service condition.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/202043 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2021-20305
**DESCRIPTION:**Nettle could allow a remote attacker to bypass security restrictions, caused by a flaw related to several signature verification functions result in the Elliptic Curve Cryptography point (ECC) multiply function being invoked with out-of-range scalers. An attacker could exploit this vulnerability to force an invalid signature, causing an assertion failure or possible validation.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/199653 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2020-25692
**DESCRIPTION:**OpenLDAP is vulnerable to a denial of service, caused by a NULL pointer dereference. By sending a specially crafted TCP packet, a remote attacker could exploit this vulnerability to cause slapd to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/191968 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

IBM QRadar Network Security 5.4.0

IBM QRadar Network Security 5.5.0

Remediation/Fixes

Product |

VRMF

|

Remediation/First Fix

—|—|—

IBM QRadar Network Security

|

5.4.0

|

Install Firmware 5.4.0.14 from the Available Updates page of the

Local Management Interface, or by performing a One Time Scheduled

Installation from SiteProtector.

Or
Download Firmware 5.4.0.14 from

IBM Security License Key and Download Center and upload and

install via the Available Updates page of the Local Management Interface.

IBM QRadar Network Security

|

5.5.0

|

Install Firmware 5.5.0.9 from the Available Updates page of the

Local Management Interface, or by performing a One Time Scheduled

Installation from SiteProtector.

Or
Download Firmware 5.5.0.9 from

IBM Security License Key and Download Center and upload and

install via the Available Updates page of the Local Management Interface.

Workarounds and Mitigations

None

Related

nessus 71
mageia 2
veracode 2
osv 17
cbl_mariner 1
openvas 36
alpinelinux 3
ubuntu 5
ibm 3
suse 1
amazon 5
cve 2
redhatcve 3
ubuntucve 3
redhat 10
oraclelinux 3
archlinux 1
slackware 1
freebsd 1
rocky 2
redos 6
debian 2
fedora 3
almalinux 1
prion 2
nvd 1
debiancve 3
cvelist 1
gentoo 3
centos 1
cloudfoundry 1
altlinux 2
photon 1
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : OpenLDAP vulnerability (USN-4622-1)
2020-11-11 00:00:00
Photon OS 3.0: Openldap PHSA-2020-3.0-0180
2020-12-22 00:00:00
EulerOS 2.0 SP9 : openldap (EulerOS-SA-2021-1032)
2021-01-04 00:00:00
mageia
mageia
Updated openldap packages fix a security vulnerability
2020-11-10 18:20:00
Updated libx11 packages fix a security vulnerability
2021-05-23 04:30:51
veracode
veracode
Denial Of Service (DoS)
2020-12-10 16:17:25
Denial Of Service (DoS)
2020-12-04 16:26:27
osv
osv
CVE-2020-25692
2020-12-08 01:15:12
BIT-openldap-2020-25692
2024-03-06 11:02:23
openldap vulnerability
2020-11-11 18:01:48
cbl_mariner
cbl_mariner
CVE-2020-25692 affecting package openldap 2.4.50-3
2020-12-16 04:51:58
openvas
openvas
Ubuntu: Security Advisory (USN-4622-1)
2020-11-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:14541-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3315-1)
2021-06-09 00:00:00
alpinelinux
alpinelinux
CVE-2020-25692
2020-12-08 01:15:12
CVE-2021-31535
2021-05-27 13:15:08
CVE-2020-25648
2020-10-20 22:15:43
ubuntu
ubuntu
OpenLDAP vulnerability
2020-11-09 00:00:00
OpenLDAP vulnerability
2020-11-11 00:00:00
NSS vulnerability
2022-05-11 00:00:00
ibm
ibm
Security Bulletin: IBM MQ Appliance is affected by an OpenLDAP vulnerability (CVE-2020-25692)
2021-07-09 15:21:52
Security Bulletin: IBM Security Guardium is affected by an OpenLDAP vulnerability (CVE-2020-25692)
2021-11-04 15:36:10
Security Bulletin: IBM MQ Appliance is affected by Mozilla Network Security Services (NSS) vulnerability (CVE-2020-25648)
2021-07-09 15:20:56
suse
suse
Security update for openldap2 (important)
2020-11-14 00:00:00
amazon
amazon
Medium: openldap
2021-05-20 15:59:00
Medium: nss
2021-06-16 20:37:00
Important: libX11
2021-07-08 18:38:00
cve
cve
CVE-2020-25692
2020-12-08 01:15:12
CVE-2020-25648
2020-10-20 22:15:43
redhatcve
redhatcve
CVE-2020-25692
2020-11-04 14:29:33
CVE-2021-31535
2021-05-19 00:27:41
CVE-2020-25648
2020-10-20 04:16:03
ubuntucve
ubuntucve
CVE-2020-25692
2020-10-30 00:00:00
CVE-2020-25648
2020-10-20 00:00:00
CVE-2021-31535
2021-05-18 00:00:00
redhat
redhat
(RHSA-2021:1389) Moderate: openldap security update
2021-04-27 07:52:42
(RHSA-2021:4326) Moderate: libX11 security update
2021-11-09 09:01:07
(RHSA-2021:3748) Moderate: OpenShift Container Storage 3.11.z Container Images Security and Bug Fix Update
2021-10-07 14:11:23
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2021-09-21 00:00:00
nss security and bug fix update
2021-04-28 00:00:00
libX11 security update
2021-08-30 00:00:00
archlinux
archlinux
[ASA-202105-12] libx11: insufficient validation
2021-05-19 00:00:00
slackware
slackware
[slackware-security] libX11
2021-05-19 21:18:57
freebsd
freebsd
libX11 -- Arbitrary code execution
2021-05-11 00:00:00
rocky
rocky
libX11 security update
2021-11-09 09:01:07
nss and nspr security, bug fix, and enhancement update
2021-09-21 07:08:30
redos
redos
ROS-2-668
2021-09-08 00:00:00
ROS-2-832
2021-09-08 00:00:00
ROS-2-502
2021-09-08 00:00:00
debian
debian
[SECURITY] [DSA 4920-1] libx11 security update
2021-05-24 07:08:00
[SECURITY] [DLA 2666-1] libx11 security update
2021-05-24 07:01:12
fedora
fedora
[SECURITY] Fedora 33 Update: nss-3.58.0-3.fc33
2020-11-04 03:03:38
[SECURITY] Fedora 32 Update: nss-3.58.0-3.fc32
2020-11-13 01:31:05
[SECURITY] Fedora 31 Update: nss-3.58.0-3.fc31
2020-11-13 01:55:03
almalinux
almalinux
Moderate: nss and nspr security, bug fix, and enhancement update
2021-09-21 07:08:30
prion
prion
Design/Logic Flaw
2020-10-20 22:15:00
Authorization
2021-05-27 13:15:00
nvd
nvd
CVE-2020-25648
2020-10-20 22:15:43
debiancve
debiancve
CVE-2020-25648
2020-10-20 22:15:43
CVE-2021-31535
2021-05-27 13:15:08
CVE-2021-20305
2021-04-05 22:15:12
cvelist
cvelist
CVE-2020-25648
2020-10-20 00:00:00
gentoo
gentoo
Mozilla Network Security Service (NSS): Denial of service
2020-12-23 00:00:00
X.Org X11 library: Denial of service
2021-05-26 00:00:00
Nettle: Denial of service
2021-05-26 00:00:00
centos
centos
libX11 security update
2021-08-30 17:31:42
cloudfoundry
cloudfoundry
USN-5410-1: NSS vulnerability | Cloud Foundry
2022-05-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package gnutls30 version 3.6.16-alt1
2021-06-09 00:00:00
Security fix for the ALT Linux 10 package gnutls30 version 3.6.16-alt1
2021-05-31 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0339
2021-04-21 00:00:00

0.116 Low

EPSS

Percentile

95.3%

JSON
Related for 38CE21C8E36E0D8E13CFDB6726BF7297A06F5BEE727FDC02819987C18B1360E6
nessus71mageia2veracode2osv17cbl_mariner1openvas36alpinelinux3ubuntu5ibm3suse1amazon5cve2redhatcve3ubuntucve3redhat10oraclelinux3archlinux1slackware1freebsd1rocky2redos6debian2fedora3almalinux1prion2nvd1debiancve3cvelist1gentoo3centos1cloudfoundry1altlinux2photon1