IBM Security Bulletin: Docker and Python as used in IBM QRadar SIEM is vulnerable to various CVEs.
The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.
CVE(s): CVE-2016-3697, CVE-2015-3631, CVE-2015-3630, CVE-2015-3627, CVE-2015-1843, CVE-2014-1912
Affected product(s) and affected version(s):
· IBM QRadar 7.2.0 – 7.2.8 Patch 6
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2sN14vl
X-Force Database: http://ift.tt/2s31b8V
X-Force Database: http://ift.tt/2sNlUL2
X-Force Database: http://ift.tt/2s2zbC0
X-Force Database: http://ift.tt/2sNcZJe
X-Force Database: http://ift.tt/2s2q8kT
X-Force Database: http://ift.tt/2sN35aP
The post IBM Security Bulletin: Docker and Python as used in IBM QRadar SIEM is vulnerable to various CVEs. appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2s28Rbq