Lucene search

IBMF36AE3BB852505D936A490EDD4C0C7C5C3262303BF37606258BF8F8355BABF19

HistoryOct 28, 2020 - 5:16 p.m.

Security Bulletin: IBM Security QRadar Packet Capture is vulnerable to Intel Microarchitectural Data Sampling (MDS) Vulnerabilites (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

2020-10-2817:16:55

www.ibm.com

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

JSON

Summary

A potential security vulnerability in CPUs may allow information disclosure.

Vulnerability Details

CVEID: CVE-2018-12126 **Description: **Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. **CVSS Base Score:**6.5 Medium **CVSS Temporal Score:**See <https://exchange.xforce.ibmcloud.com/vulnerabilities/160990> for the current score CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N .

CVEID: CVE-2018-12127 **Description: **Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. **CVSS Base Score:**6.5 Medium **CVSS Temporal Score:**See <https://exchange.xforce.ibmcloud.com/vulnerabilities/160990> for the current score CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CVEID: CVE-2018-12130 **Description: **Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. **CVSS Base Score:**6.5 Medium CVSS Temporal Score:<https://exchange.xforce.ibmcloud.com/vulnerabilities/160992> for the current score CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

**CVEID:**CVE-2019-11091
**Description:**Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
CVSS Base Score: 3.8 Low **CVSS Temporal Score:**See <https://exchange.xforce.ibmcloud.com/vulnerabilities/160993> for the current score CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected Products and Versions

IBM Security QRadar Packet Capture 7.2.0 - 7.2.8 Patch 5

IBM Security QRadar Packet Capture 7.3.0 - 7.3.1 Patch 1

Remediation/Fixes

IBM Security QRadar Packet Capture 7.2.8 Patch 6

IBM Security QRadar Packet Capture 7.3.2 GA

CPENameOperatorVersion
ibm qradar network packet capture softwareeq7.2
ibm qradar network packet capture softwareeq7.3

CPE	Name	Operator	Version
	ibm qradar network packet capture software	eq	7.2
	ibm qradar network packet capture software	eq	7.3

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

JSON

Related for F36AE3BB852505D936A490EDD4C0C7C5C3262303BF37606258BF8F8355BABF19