Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM697411C1D0B6EAAD03E8D2A5EB53C7D54B1A12C31BE0CB63F6EA92666FE7AECA
HistoryNov 16, 2023 - 3:31 p.m.

Security Bulletin: IBM Planning Analytics Workspace is affected but not considered vulnerable to multiple vulnerabilities

2023-11-1615:31:12
www.ibm.com
19
ibm planning analytics workspace
multiple vulnerabilities
node.js
redis
netty
jszip
google guava
golang go
apache xalan java xslt

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

Summary

IBM Planning Analytics Workspace is affected but not classified as vulnerable to multiple vulnerabilities based on current information, in the following 3rd-party components: Node.js word-wrap (CVE-2023-26115), Node.js semver (CVE-2022-25883), Node,js dicer, (CVE-2022-24434), Redis (CVE-2022-24736, CVE-2022-24735, CVE-2021-31294) Netty (CVE-2023-34462), JSZip (CVE-2022-48285), Google Guava (CVE-2023-2976, CVE-2020-8908), Golang GO (CVE-2023-29402, CVE-2023-29403, CVE-2023-29404, CVE-2023-29405) and Apache Xalan Java XSLT (CVE-2022-34169). These 3rd-party components were upgraded to non-vulnerable versions in IBM Planning Analytics Workspace 2.0.91.

Vulnerability Details

CVEID:CVE-2023-26115
**DESCRIPTION:**Node.js word-wrap module is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the result variable. By sending a specially crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/256901 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2022-24736
**DESCRIPTION:**Redis is vulnerable to a denial of service, caused by a NULL pointer dereference. By loading a specially crafted Lua script, a local authenticated attacker could exploit this vulnerability to cause a crash of the redis-server process.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/225345 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2022-24735
**DESCRIPTION:**Redis could allow a local authenticated attacker to execute arbitrary code on the system, caused by improper validation of user-supplied input by the Lua script execution environment. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code with the potentially higher privileges of another Redis user on the system.
CVSS Base score: 3.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/225346 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N)

CVEID:CVE-2023-34462
**DESCRIPTION:**Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of heap for each channel during the TLS handshake the SniHandler class. By sending a specially crafted client hello packet, a remote authenticated attacker could exploit this vulnerability to cause a OutOfMemoryError and so result in a denial of service condition.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/258713 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2022-48285
**DESCRIPTION:**JSZip could allow a remote attacker to traverse directories on the system, caused by the failure to sanitize filenames when files are loaded with loadAsync, which makes the library vulnerable to a Zip Slip attack. By extracting files from a specially crafted archive, an attacker could gain access to parts of the file system outside of the target folder, overwrite the executable files and execute arbitrary commands on the system.
CVSS Base score: 7.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/244499 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

CVEID:CVE-2022-25883
**DESCRIPTION:**Node.js semver package is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the new Range function. By providing specially crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/258647 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2023-2976
**DESCRIPTION:**Google Guava could allow a local authenticated attacker to obtain sensitive information, caused by a flaw with using Java’s default temporary directory for file creation in FileBackedOutputStream. By sending a specially crafted request, an attacker could exploit this vulnerability to access the files in the default Java temporary directory, and use this information to launch further attacks against the affected system.
CVSS Base score: 5.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/258199 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2023-29403
**DESCRIPTION:**Golang Go could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw when a binary is run with the setuid/setgid bits. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges. to read or write contents of the registers.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/257653 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2023-29404
**DESCRIPTION:**Golang Go could allow a remote attacker to execute arbitrary code on the system, caused by a flaw when running “go get” on a malicious module. By sending a specially crafted request using linker flags, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/257654 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2023-29405
**DESCRIPTION:**Golang Go could allow a remote attacker to execute arbitrary code on the system, caused by a flaw when running “go get” on a malicious module. By sending a specially crafted request using linker flags, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/257655 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2023-29402
**DESCRIPTION:**Golang Go could allow a remote attacker to execute arbitrary code on the system, caused by the generation of unexpected code at build time when using cgo. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/257652 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2022-24434
**DESCRIPTION:**Node.js dicer module is vulnerable to a denial of service. By sending a specially-crafted form to server, a remote attacker could exploit this vulnerability to crash the node.js service.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/227085 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-8908
**DESCRIPTION:**Guava could allow a remote authenticated attacker to bypass security restrictions, caused by a temp directory creation vulnerability in com.google.common.io.Files.createTempDir(). By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass access restrictions.
CVSS Base score: 5.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/192996 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N)

CVEID:CVE-2022-34169
**DESCRIPTION:**The Apache Xalan Java XSLT library could allow a remote attacker to execute arbitrary code on the system, caused by an integer truncation issue when processing malicious XSLT stylesheets. By using specially crafted XSLT stylesheets, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 7.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/231489 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

CVEID:CVE-2021-31294
**DESCRIPTION:**Redis is vulnerable to a denial of service, caused by an assertion failure. By sending a specially crafted psync command, a remote attacker could exploit this vulnerability to cause the application to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/262206 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Planning Analytics Workspace 2.0

Remediation/Fixes

It is strongly recommended that you apply the most recent security updates:

Affected Product(s) Version Fix
IBM Planning Analytics Workspace 2.0 Download IBM Planning Analytics Local v2.0: Planning Analytics Workspace Release 91 from Fix Central.

IBM Planning Analytics Workspace cloud environments have been remediated.

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm planning analytics localeqany

Related

nessus 41
ibm 38
openvas 17
oraclelinux 4
redhat 5
almalinux 4
fedora 5
osv 23
mageia 2
rocky 3
redos 1
suse 2
freebsd 2
veracode 7
debiancve 7
github 4
cbl_mariner 9
redhatcve 6
cve 7
ubuntucve 4
prion 5
alpinelinux 1
amazon 1
cgr 1
nessus
nessus
Oracle TimesTen 18.x < 18.1.4.39.0, 22.x < 22.1.1.18.0 Multiple Vulnerabilities (October 2023 CPU)
2023-12-27 00:00:00
AlmaLinux 8 : go-toolset:rhel8 (ALSA-2023:3922)
2023-06-29 00:00:00
RHEL 7 : go-toolset-1.19 and go-toolset-1.19-golang (RHSA-2023:3920)
2023-06-29 00:00:00
ibm
ibm
Security Bulletin: IBM Cloud Pak for Data Scheduling is vulnerable to multiple ansible-operator and opm vulnerabilities
2024-03-18 14:14:58
Security Bulletin: IBM Event Streams is affected by multiple vulnerabilities in Golang Go
2023-07-25 06:12:54
Security Bulletin: Multiple vulnerabilities affect IBM Db2® REST
2023-10-10 20:58:35
openvas
openvas
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2859)
2023-09-20 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2842)
2023-09-20 00:00:00
Fedora: Security Advisory for golang (FEDORA-2023-1819dc9854)
2023-08-12 00:00:00
oraclelinux
oraclelinux
go-toolset:ol8 security update
2023-07-04 00:00:00
go-toolset and golang security update
2023-07-07 00:00:00
redis security and bug fix update
2022-11-22 00:00:00
redhat
redhat
(RHSA-2023:3923) Critical: go-toolset and golang security update
2023-06-29 09:38:01
(RHSA-2023:3920) Critical: go-toolset-1.19 and go-toolset-1.19-golang security update
2023-06-29 05:25:55
(RHSA-2023:3922) Critical: go-toolset:rhel8 security update
2023-06-29 08:54:12
almalinux
almalinux
Critical: go-toolset:rhel8 security update
2023-06-29 00:00:00
Critical: go-toolset and golang security update
2023-06-29 00:00:00
Low: redis security and bug fix update
2022-11-15 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: golang-1.20.6-1.fc38
2023-07-21 02:27:24
[SECURITY] Fedora 37 Update: golang-1.19.12-1.fc37
2023-08-11 01:01:43
[SECURITY] Fedora 34 Update: redis-6.2.7-1.fc34
2022-05-08 02:04:05
osv
osv
Critical: go-toolset:rhel8 security update
2023-06-29 00:00:00
Critical: go-toolset and golang security update
2023-07-08 02:54:41
Critical: go-toolset and golang security update
2023-06-29 00:00:00
mageia
mageia
Updated golang packages fix security vulnerability
2023-07-07 08:54:45
Updated redis packages fix security vulnerability
2022-09-21 21:15:27
rocky
rocky
go-toolset and golang security update
2023-07-08 02:54:41
redis:6 security, bug fix, and enhancement update
2022-11-08 06:22:23
redis security and bug fix update
2022-11-15 06:15:29
redos
redos
ROS-20231109-01
2023-11-09 00:00:00
suse
suse
Security update for redis (moderate)
2022-05-25 00:00:00
Security update for redis (moderate)
2022-06-02 00:00:00
freebsd
freebsd
redis -- Multiple vulnerabilities
2022-04-27 00:00:00
go -- multiple vulnerabilities
2023-04-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-08-06 06:43:36
Directory Traversal
2023-02-06 04:51:43
Remote Code Execution (RCE)
2022-05-05 02:28:50
debiancve
debiancve
CVE-2022-48285
2023-01-29 05:15:10
CVE-2021-31294
2023-07-15 23:15:00
CVE-2022-24735
2022-04-27 20:15:00
github
github
JSZip contains Path Traversal via loadAsync
2023-01-29 06:30:52
Crash in HeaderParser in dicer
2022-05-21 00:00:25
word-wrap vulnerable to Regular Expression Denial of Service
2023-06-22 06:30:18
cbl_mariner
cbl_mariner
CVE-2022-48285 affecting package mozjs 102.15.1-1
2024-03-19 17:21:46
CVE-2022-48285 affecting package mozjs60 60.9.0-11
2023-07-28 23:16:55
CVE-2022-24735 affecting package redis 5.0.14-1
2022-07-14 20:59:56
redhatcve
redhatcve
CVE-2021-31294
2023-07-17 17:08:47
CVE-2022-48285
2023-01-31 05:35:23
CVE-2023-26115
2023-06-23 05:47:00
cve
cve
CVE-2021-31294
2023-07-15 23:15:00
CVE-2022-48285
2023-01-29 05:15:10
CVE-2023-26115
2023-06-22 05:15:09
ubuntucve
ubuntucve
CVE-2021-31294
2023-07-15 00:00:00
CVE-2022-24434
2022-05-20 00:00:00
CVE-2022-48285
2023-01-29 00:00:00
prion
prion
Directory traversal
2023-01-29 05:15:00
Open redirect
2023-07-15 23:15:00
Design/Logic Flaw
2023-06-22 05:15:00
alpinelinux
alpinelinux
CVE-2022-24735
2022-04-27 20:15:00
amazon
amazon
Important: golang
2023-07-13 23:57:00
cgr
cgr
CVE-2023-29403 vulnerabilities
2024-04-29 09:06:10

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON
Related for 697411C1D0B6EAAD03E8D2A5EB53C7D54B1A12C31BE0CB63F6EA92666FE7AECA
nessus41ibm38openvas17oraclelinux4redhat5almalinux4fedora5osv23mageia2rocky3redos1suse2freebsd2veracode7debiancve7github4cbl_mariner9redhatcve6cve7ubuntucve4prion5alpinelinux1amazon1cgr1