Lucene search

K
ibmIBM9C777C2836925BC3A3BCE8F8AF085A8DE343320BF6D36A5200D366181C59F003
HistoryJun 29, 2023 - 2:57 p.m.

Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities (CVE-2023-28709)

2023-06-2914:57:18
www.ibm.com
21
ibm security soar
apache tomcat
denial of service
upgrade
vulnerability
cve-2023-28709

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.9

Confidence

High

EPSS

0.022

Percentile

89.6%

Summary

IBM Security SOAR uses an older version of Apache Tomcat that may be identified and exploited. An update has been released which addresses these issues. It is recommended upgrading to Version 49.1 or later of IBM Security SOAR.

Vulnerability Details

**CVEID:**CVE-2023-28709 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an incomplete fix for CVE-2023-24998 related to the failure to limit the number of request parts to be processed in the file upload function. By sending a specially crafted request using query string parameters, a remote attacker could exploit this vulnerability to cause a denial of service.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/255893 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Security SOAR 49.0 and earlier

Remediation/Fixes

IBM encourages customers to promptly update their systems.

Users must upgrade to v49.1 or higher of IBM SOAR in order to obtain a fix for this vulnerability.

You can upgrade the platform and apply the security updates by following the instructions in the "Upgrade Procedure " section in the IBM Documentation

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmsoarRange49.0
VendorProductVersionCPE
ibmsoar*cpe:2.3:a:ibm:soar:*:*:*:*:*:*:*:*

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.9

Confidence

High

EPSS

0.022

Percentile

89.6%