IBM QRadar SIEM Bug Let Remote Attacker Trigger DoS

A pair of vulnerabilities were learned in IBM QRadar Wincollect, which were associated with denial of provider that could maybe also allow a threat actor to disrupt the provider from utilization. These vulnerabilities were assigned with CVEs CVE-2023-38039, CVE-2023-1255, and CVE-2022-25883.

IBM has released security patches for fixing these vulnerabilities, at the side of a security advisory. Moreover, users are advised to patch them.

CVE-2022-25883: Denial of Service in Node.js semver kit

This vulnerability is associated with the Node.js semver kit which is which potential of a usual expression denial-of-provider (ReDoS) flaw in the recent vary feature. A threat actor could maybe also use a specially crafted regex enter to milk this vulnerability. The severity for this vulnerability has been given as 5.3 (Medium).

CVE-2023-1255: Denial of Service in OpenSSL

This vulnerability is display cloak in the OpenSSL which potential of a flaw in the implementation of AES-XTS cipher decryption for 64-bit ARM platforms. A threat actor could maybe also ship a specially crafted quiz that could maybe also result in crashing the utility. The severity for this vulnerability has been given as 3.7 (Low)

CVE-2023-38039: Denial of Service in cURL libcurl

This vulnerability exists in the cURL libcurl library which potential of insufficient limitation of the volume and dimension of headers well-liked in a response. A threat actor could maybe also ship a specially crafted quiz, which could maybe also employ the heap memory and result in a denial of provider situation. The severity of this vulnerability has been given as 7.5 (Excessive).

A entire document has been revealed by IBM, providing detailed records on these and a range of different vulnerabilities.

Affected Merchandise & Fastened in Model

Users of this product are beneficial to upgrade to basically the most modern model to discontinue these vulnerabilities from getting exploited by threat actors.