Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM5CF5E501F33F27E00550D56AF2E8B4DD49ABBF9F37122E58BF4BBEBB4CE88ECC
HistoryMar 12, 2022 - 1:27 a.m.

Security Bulletin: Vulnerabilities in Polkit, Node.js, OpenSSH, and Golang Go affect IBM Spectrum Protect Plus (CVE-2021-4034, CVE-2022-21681, CVE-2022-21680, CVE-2022-0235, CVE-2021-41617, CVE-2021-44716, CVE-2021-44717, 218243)

2022-03-1201:27:09
www.ibm.com
13

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

58.2%

JSON

Summary

Vulnerabilities in Polkit, Node.js, OpenSSL, and Golang Go can affect IBM Spectrum Protect Plus. The vulnerabilities include elevation of privileges, denial of service, obtaining sensitive information, and bypassing security restrictions.

Vulnerability Details

CVEID:CVE-2021-4034
**DESCRIPTION:**Polkit could allow a local authenticated attacker to gain elevated privileges on the system, caused by incorrect handling of the argument vectors in the pkexec utility. By crafting environment variables in a specific way, an attacker could exploit this vulnerability to execute commands with root privileges.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/218087 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2022-21681
**DESCRIPTION:**Node.js marked module is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in inline.reflinkSearch. By sending a specially-crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/217320 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2022-21680
**DESCRIPTION:**Node.js marked module is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in block.def. By sending a specially-crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/217319 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2022-0235
**DESCRIPTION:**Node.js node-fetch could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when fetching a remote url with Cookie. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/217758 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2021-41617
**DESCRIPTION:**OpenSSH could allow a local attacker to gain elevated privileges on the system, caused by an error in sshd when certain non-default configurations are used. By executing an AuthorizedKeysCommand or AuthorizedPrincipalsCommand, where a AuthorizedKeysCommandUser or AuthorizedPrincipalsCommandUser directive has been set to run the command as a non-root user, an attacker could exploit this vulnerability to gain privileges associated with group memberships of the sshd process.
CVSS Base score: 7.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/210062 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2021-44716
**DESCRIPTION:**Golang Go is vulnerable to a denial of service, caused by an uncontrolled memory consumption in the header canonicalization cache in net/http. By sending HTTP/2 requests, a remote attacker could exploit this vulnerability to consume all available memory resources.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/216553 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2021-44717
**DESCRIPTION:**Golang Go could allow a remote attacker to bypass security restrictions, caused by an error in the syscall.ForkExec() interface. By causing the erroneous closing of file descriptor 0 after file-descriptor exhaustion, an attacker could exploit this vulnerability to compromise data integrity and/or confidentiality in a somewhat uncontrolled way in programs linked with and using syscall.ForkExec().
CVSS Base score: 4.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/216563 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N)

**Third Party Entry:**218243
**DESCRIPTION:**The Node.js uglify-js module is vulnerable to a denial of service, caused by an error in the string_template and the decode_template functions. By sending a regular expression, an attacker could exploit this vulnerability to cause a denial of service.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/218243 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Spectrum Protect Plus 10.1.0.0-10.1.9.3

Remediation/Fixes

IBM Spectrum Protect Plus****Affected Versions|**Fixing
**Level|Platform|**Link to Fix and Instructions
**
—|—|—|—
10.1.0.0-10.1.9.3| 10.1.10| Linux|

<https://www.ibm.com/support/pages/node/6552532&gt;

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm spectrum protect pluseq10.1

Related

fedora 6
nessus 58
openvas 37
ibm 21
suse 4
redhat 8
oraclelinux 4
altlinux 1
osv 13
almalinux 2
mageia 2
freebsd 1
rocky 2
cve 4
ubuntucve 5
cnvd 2
debiancve 4
redhatcve 4
veracode 4
prion 4
github 4
alpinelinux 1
amazon 2
photon 1
paloalto 1
broadcom 1
ubuntu 1
centos 1
cbl_mariner 1
fedora
fedora
[SECURITY] Fedora 36 Update: gitqlient-1.5.0-2.fc36
2022-10-08 17:33:50
[SECURITY] Fedora 34 Update: golang-1.16.12-1.fc34
2021-12-30 01:43:52
[SECURITY] Fedora 35 Update: golang-1.16.12-1.fc35
2021-12-30 01:19:52
nessus
nessus
Fedora 36 : gitqlient (2022-784d729f30)
2022-12-23 00:00:00
EulerOS 2.0 SP10 : golang (EulerOS-SA-2022-1506)
2022-04-20 00:00:00
Oracle Linux 8 : go-toolset:ol8 (ELSA-2021-5160)
2021-12-16 00:00:00
openvas
openvas
Fedora: Security Advisory for gitqlient (FEDORA-2022-784d729f30)
2022-10-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:4169-1)
2021-12-24 00:00:00
openSUSE: Security Advisory for go1.16 (openSUSE-SU-2021:1626-1)
2022-02-01 00:00:00
ibm
ibm
Security Bulletin: There is a vulnerability in Node.js used IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2022-21681, CVE-2022-21680)
2023-03-02 20:47:05
Security Bulletin: There are multiple vulnerabilities in Node.js used by IBM Maximo Asset Management (CVE-2022-21681, CVE-2022-21680)
2023-03-02 20:50:22
Security Bulletin: IBM Storage Ceph is vulnerable to a REDOS attack in MarkedJS (CVE-2022-21680, CVE-2022-21681)
2023-11-01 19:42:37
suse
suse
Security update for go1.17 (moderate)
2021-12-23 00:00:00
Security update for go1.16 (moderate)
2021-12-26 00:00:00
Security update for go1.16 (moderate)
2021-12-23 00:00:00
redhat
redhat
(RHSA-2022:1056) Moderate: Release of OpenShift Serverless Client kn 1.21.0
2022-03-24 15:02:11
(RHSA-2022:0927) Moderate: OpenShift Container Platform 4.10.5 packages and security update
2022-03-21 11:55:47
(RHSA-2021:5160) Important: go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
oraclelinux
oraclelinux
go-toolset:ol8 security and bug fix update
2021-12-16 00:00:00
openssh security update
2021-12-07 00:00:00
openssh security update
2021-11-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.5-alt1
2021-12-09 00:00:00
osv
osv
Important: go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
Important: go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
Inefficient Regular Expression Complexity in marked
2022-01-14 21:04:41
almalinux
almalinux
Important: go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
Moderate: openssh security, bug fix, and enhancement update
2022-05-10 06:45:24
mageia
mageia
Updated golang packages fix security vulnerability
2021-12-26 03:14:13
Updated openssh packages fix security vulnerability
2021-12-19 15:26:08
freebsd
freebsd
go -- multiple vulnerabilities
2021-12-08 00:00:00
rocky
rocky
go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
openssh security, bug fix, and enhancement update
2022-05-10 06:45:24
cve
cve
CVE-2021-44717
2022-01-01 05:15:00
CVE-2022-21680
2022-01-14 17:15:00
CVE-2022-21681
2022-01-14 17:15:00
ubuntucve
ubuntucve
CVE-2021-44717
2022-01-01 00:00:00
CVE-2022-21680
2022-01-14 00:00:00
CVE-2021-41617
2021-09-26 00:00:00
cnvd
cnvd
marked denial of service vulnerability (CNVD-2022-15958)
2022-01-18 00:00:00
marked denial of service vulnerability
2022-01-18 00:00:00
debiancve
debiancve
CVE-2022-21680
2022-01-14 17:15:00
CVE-2022-21681
2022-01-14 17:15:00
CVE-2021-41617
2021-09-26 19:15:00
redhatcve
redhatcve
CVE-2022-21680
2022-05-06 20:29:55
CVE-2022-21681
2022-05-06 20:29:55
CVE-2021-44717
2022-05-07 14:09:50
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2022-01-17 13:31:23
Invalid I/O Calculation
2021-12-14 20:52:34
Regular Expression Denial Of Service (ReDoS)
2022-01-17 14:04:05
prion
prion
Code injection
2022-01-14 17:15:00
Code injection
2022-01-01 05:15:00
Code injection
2022-01-14 17:15:00
github
github
Inefficient Regular Expression Complexity in marked
2022-01-14 21:04:41
Inefficient Regular Expression Complexity in marked
2022-01-14 21:04:46
Unbounded memory usage on exposed HTTP/2 (non-gRPC) endpoints
2022-01-12 22:33:04
alpinelinux
alpinelinux
CVE-2021-44717
2022-01-01 05:15:00
amazon
amazon
Medium: openssh
2022-02-03 19:30:00
Medium: openssh
2022-02-10 22:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0440
2021-10-10 00:00:00
paloalto
paloalto
Informational: Impact of the OpenSSH Vulnerability CVE-2021-41617 on PAN-OS
2021-11-30 18:15:00
broadcom
broadcom
A flaw in OpenSSH helper programs could lead to local privilege escalation
2023-08-01 00:00:00
ubuntu
ubuntu
OpenSSH vulnerability
2022-10-10 00:00:00
centos
centos
openssh, pam_ssh_agent_auth security update
2021-12-01 19:19:31
cbl_mariner
cbl_mariner
CVE-2021-41617 affecting package openssh 8.5p1-3
2021-10-14 02:25:47

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

58.2%

JSON
Related for 5CF5E501F33F27E00550D56AF2E8B4DD49ABBF9F37122E58BF4BBEBB4CE88ECC
fedora6nessus58openvas37ibm21suse4redhat8oraclelinux4altlinux1osv13almalinux2mageia2freebsd1rocky2cve4ubuntucve5cnvd2debiancve4redhatcve4veracode4prion4github4alpinelinux1amazon2photon1paloalto1broadcom1ubuntu1centos1cbl_mariner1