IBMDD512861F74C7671AD07031A4B80A3B720892A7026FEA4D54150E7422A013FAESecurity Bulletin: IBM API Connect Developer Portal is impacted by multiple PHP vulnerabilities(CVE-2019-11038 CVE-2019-11039 CVE-2019-11040)
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
Summary
IBM API Connect has addressed the following vulnerability.
Vulnerability Details
CVEID:CVE-2019-11038
**DESCRIPTION:*PHP could allow a remote attacker to obtain sensitive information, caused by an uninitialized read in the gdImageCreateFromXbm function. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base Score: 5.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/161866> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
CVEID:CVE-2019-11039
**DESCRIPTION:*PHP is vulnerable to a denial of service, caused by an out-of-bounds read in the _php_iconv_mime_decode function in iconv.c. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause the application to crash or obtain sensitive information.
CVSS Base Score: 6.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/161867> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)
CVEID:CVE-2019-11040
**DESCRIPTION:*PHP is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the php_jpg_get16 function. By sending a specially-crafted request, a remote attacker could overflow a buffer and execute arbitrary code on the system.
CVSS Base Score: 9.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/161868> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
Affected Products and Versions
IBM API Connect versions
5.0.0.0-5.0.8.6 iFix 1
2018.1-2018.4.1.5
Remediation/Fixes
| Affected Product | Addressed in VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| IBM API Connect 5.0.0.0-5.0.8.6 iFix 1 | 5.0.8.6 iFix 2 | LI80958 |
Addressed in IBM API Connect V5.0.8.6 iFix 2 dated June 11, 2019.
Developer Portal is impacted.
Follow this link and find the APIConnect-Portal package.
http://www.ibm.com/support/fixcentral/swg/quickorder
IBM API Connect V2018.1 - 2018.4.1.5
|
2018.4.1.6
| LI80958 | |
Addressed in IBM API Connect v2018.4.1.6 and subsequent iFixes.
Developer Portal is impacted.
Follow this link and find the “portal” package appropriate for the form factor of your installation:
http://www.ibm.com/support/fixcentral/swg/quickorder
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm api connect | eq | 5.0.0.0 | |
| ibm api connect | eq | 5.0.8.6 | |
| ibm api connect | eq | 2018.1 | |
| ibm api connect | eq | 2018.4.1.6 |
Related
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P