Lucene search

K
ibmIBM775A1EF8AB84EDDEAAC3AFD8A9183F862501C3473302E82B0CB0C6CA82535C19
HistoryDec 12, 2022 - 8:14 p.m.

Security Bulletin: IBM QRadar Network Packet Capture has released 7.3.1 Patch 1, and 7.2.8 Patch 1 in response to the vulnerabilities known as Spectre and Meltdown.

2022-12-1220:14:44
www.ibm.com
13
ibm qradar network packet capture
patches
spectre
meltdown
vulnerabilities
7.3.1
7.2.8
cve-2017-5753
cve-2017-5715
cve-2017-5754
firmware
lenovo
dell

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

CVSS3

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

0.976

Percentile

100.0%

Summary

IBM has released the following 7.3.1 Patch 1 and 7.2.8. Patch 1 for IBM QRadar Network Packet Capture in response to CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754.

Vulnerability Details

CVEID: CVE-2017-5753

CVEID: CVE-2017-5715

CVEID: CVE-2017-5754

Affected Products and Versions

IBM QRadar Network Packet Capture 7.3.0 โ€“ 7.3.1
IBM QRadar Network Packet Capture 7.2.8

Remediation/Fixes

QRadar Network Packet Capture 7.3.1 Patch 1
QRadar Network Packet Capture 7.2.8 Patch 1

Workarounds and Mitigations

Please note in order to mitigate CVE-2017-5715 Spectre Variant #2, microcode will need to be updated on all appliances along with the Kernel update that is included in the QRadar Network Packet Capture Patch. Please see the links below for available microcode updates.

For Lenovo Appliance M5 Firmware using ISO/IMM, see:
Lenovo x3550 M5 and Lenovo x3650 M5

For Dell Appliances, see:
For Dell R630 and R730 appliances select your Operating System and Download Version 2.7.1 BIOS

Affected configurations

Vulners
Node
ibmqradar_network_packet_captureMatchany

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

CVSS3

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

0.976

Percentile

100.0%