Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMDFED3B68E0A32BD0DB8AEA9ECB36992763F304384C7E7902FB2D8290F9834DEC
HistoryApr 09, 2024 - 6:54 p.m.

Security Bulletin: IBM QRadar Deployment Intelligence app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

2024-04-0918:54:46
www.ibm.com
5
ibm qradar siem
vulnerable components
browserify
axios
follow-redirects
cve-2023-46234
cve-2023-45857
cve-2023-26159
security update

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.0%

JSON

Summary

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools. IBM QRadar Deployment Intelligence app for IBM QRadar SIEM has addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2023-46234
**DESCRIPTION:**browserify browserify-sign could allow a remote attacker to bypass security restrictions, caused by an upper bound check issue in the dsaVerify function. By sending a specially crafted request, an attacker could exploit this vulnerability to perform signature forgery attack.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/269796 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)

CVEID:CVE-2023-45857
**DESCRIPTION:**Axios is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By inserting the X-XSRF-TOKEN header using the secret XSRF-TOKEN cookie value in all requests to any server when the XSRF-TOKEN0 cookie is available, and the withCredentials setting is turned on, an attacker could exploit this vulnerability to perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.
CVSS Base score: 7.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/270574 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N)

CVEID:CVE-2023-26159
**DESCRIPTION:**follow-redirects could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. An attacker could exploit this vulnerability using a specially crafted URL to redirect a victim to arbitrary Web sites.
CVSS Base score: 6.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/278622 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM QRadar Deployment Intelligence App 1.0.0 - 3.0.12

Remediation/Fixes

Update to 3.0.13

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm security qradar siemeq3.0

Related

ibm 62
debian 2
nessus 12
cvelist 3
redhatcve 3
openvas 5
osv 7
debiancve 3
github 3
prion 3
veracode 3
cve 3
ubuntucve 3
cgr 2
githubexploit 3
wolfi 2
cbl_mariner 2
fedora 3
redhat 11
redos 1
ibm
ibm
Security Bulletin: IBM Storage Fusion HCI is vulnerable to phishing attacks and cross-site request forgery due to follow-redirects and Axios.
2024-05-11 16:54:49
Security Bulletin: Multiple vulnerabilities in nodejs packages affect IBM Business Automation Workflow - CVE-2023-26159, CVE-2023-45857
2024-02-02 11:00:27
Security Bulletin: IBM App Connect Enterprise Certified Container Dashboard operands that use S3 storage are vulnerable to security restrictions bypass due to [CVE-2023-46234]
2023-12-14 10:45:03
debian
debian
[SECURITY] [DLA 3635-1] node-browserify-sign security update
2023-10-29 04:34:11
[SECURITY] [DSA 5539-1] node-browserify-sign security update
2023-10-30 16:25:31
nessus
nessus
RHEL 6 : browserify-sign (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : browserify-sign (Unpatched Vulnerability)
2024-05-11 00:00:00
Debian DLA-3635-1 : node-browserify-sign - LTS security update
2023-10-29 00:00:00
cvelist
cvelist
CVE-2023-46234 browserify-sign vulnerable via an upper bound check issue in `dsaVerify` that leads to a signature forgery attack
2023-10-26 14:31:35
CVE-2023-45857
2023-11-08 00:00:00
CVE-2023-26159
2024-01-02 05:00:00
redhatcve
redhatcve
CVE-2023-46234
2023-10-27 06:27:16
CVE-2023-45857
2023-11-10 00:17:17
CVE-2023-26159
2024-01-02 07:30:34
openvas
openvas
Debian: Security Advisory (DLA-3635-1)
2023-10-30 00:00:00
Debian: Security Advisory (DSA-5539-1)
2023-10-31 00:00:00
Fedora: Security Advisory for pgadmin4 (FEDORA-2024-9818cb2406)
2024-01-23 00:00:00
osv
osv
CVE-2023-46234
2023-10-26 15:15:09
browserify-sign upper bound check issue in `dsaVerify` leads to a signature forgery attack
2023-10-26 20:53:21
node-browserify-sign - security update
2023-10-29 00:00:00
debiancve
debiancve
CVE-2023-46234
2023-10-26 15:15:09
CVE-2023-45857
2023-11-08 21:15:08
CVE-2023-26159
2024-01-02 05:15:08
github
github
browserify-sign upper bound check issue in `dsaVerify` leads to a signature forgery attack
2023-10-26 20:53:21
Axios Cross-Site Request Forgery Vulnerability
2023-11-08 21:30:37
Follow Redirects improperly handles URLs in the url.parse() function
2024-01-02 06:30:30
prion
prion
Out-of-bounds
2023-10-26 15:15:00
Design/Logic Flaw
2023-11-08 21:15:00
Input validation
2024-01-02 05:15:00
veracode
veracode
Improper Verification Of Cryptographic Signature
2023-10-27 08:50:35
Cross-Site Request Forgery
2023-11-09 07:07:08
Open Redirect
2024-01-03 10:31:20
cve
cve
CVE-2023-46234
2023-10-26 15:15:09
CVE-2023-45857
2023-11-08 21:15:08
CVE-2023-26159
2024-01-02 05:15:08
ubuntucve
ubuntucve
CVE-2023-46234
2023-10-26 00:00:00
CVE-2023-45857
2023-11-08 00:00:00
CVE-2023-26159
2024-01-02 00:00:00
cgr
cgr
CVE-2023-45857 vulnerabilities
2024-05-19 03:07:16
CVE-2023-26159 vulnerabilities
2024-05-19 03:07:16
githubexploit
githubexploit
Exploit for Cross-Site Request Forgery (CSRF) in Axios
2023-10-26 04:18:03
Exploit for CVE-2023-45857
2023-10-18 12:19:34
Exploit for Cross-Site Request Forgery (CSRF) in Axios
2023-11-24 22:42:56
wolfi
wolfi
CVE-2023-45857 vulnerabilities
2024-05-29 03:07:31
CVE-2023-26159 vulnerabilities
2024-05-29 03:07:31
cbl_mariner
cbl_mariner
CVE-2023-26159 affecting package python-tensorboard for versions less than 2.16.2-1
2024-05-17 21:38:35
CVE-2023-26159 affecting package reaper for versions less than 3.1.1-8
2024-01-19 03:44:08
fedora
fedora
[SECURITY] Fedora 39 Update: pgadmin4-7.8-3.fc39
2024-01-23 00:58:56
[SECURITY] Fedora 38 Update: yarnpkg-1.22.21-2.fc38
2024-02-28 01:41:33
[SECURITY] Fedora 39 Update: yarnpkg-1.22.21-2.fc39
2024-02-28 01:10:55
redhat
redhat
(RHSA-2023:6180) Important: Red Hat OpenShift distributed tracing 2.9.0 containers security update
2023-10-30 12:51:55
(RHSA-2024:0720) Moderate: Migration Toolkit for Runtimes security, bug fix and enhancement update
2024-02-07 14:57:35
(RHSA-2024:0271) Moderate: Logging Subsystem 5.8.2 - Red Hat OpenShift security update
2024-01-17 11:29:31
redos
redos
ROS-20240418-08
2024-04-18 00:00:00

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.0%

JSON
Related for DFED3B68E0A32BD0DB8AEA9ECB36992763F304384C7E7902FB2D8290F9834DEC
ibm62debian2nessus12cvelist3redhatcve3openvas5osv7debiancve3github3prion3veracode3cve3ubuntucve3cgr2githubexploit3wolfi2cbl_mariner2fedora3redhat11redos1