VDB
CVE-2021-43797
CVE-2021-43797
PUBLISHED
CVSS 8.699999809265137 HIGH
In IBM QRadar SIEM existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Software-Komponenten von QRadar. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, Informationen falsch darzustellen, einen Denial of Service Zustand herbeizuführen, Sicherheitsvorkehrungen zu umgehen, einen Cross-Site-Scripting-Angriff durchzuführen oder unbekannte Auswirkungen zu verursachen.
EPSS 0.38% · 59.9th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.38%
59.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Communications Applications <=5.5.9 | |
| Oracle | Oracle Fusion Middleware 11.1.1.5.0 | |
| Oracle | Oracle Communications Applications 7.4.1 | |
| IBM | IBM Spectrum Protect Plus 10.1 | |
| Oracle | Oracle Linux | |
| Oracle | Oracle Utilities Applications 4.3.0.5.0 | |
| Dell | Dell Data Protection Advisor <19.12 SP 1 | |
| JFrog | JFrog Artifactory | |
| Atlassian | Atlassian Bitbucket <8.19.25 (LTS) | |
| Oracle | Oracle Fusion Middleware 8.5.5 | |
| Oracle | Oracle Utilities Applications 4.4.0.3.0 | |
| SUSE | SUSE Linux | |
| Dell | Dell ECS <3.8.1.0 | |
| Oracle | Oracle Fusion Middleware 9.1.0 | |
| Oracle | Oracle Fusion Middleware 12.2.1.4.0 | |
| Atlassian | Atlassian Bitbucket <10.0.2 | |
| Oracle | Oracle Communications Applications 8.1.0.20.0 | |
| Oracle | Oracle Utilities Applications 4.4.0.2.0 | |
| Oracle | Oracle Communications Applications 8.0.0.7.0 | |
| Red Hat | Red Hat JBoss Enterprise Application Platform <7.1.10 |
…and 43 more
Exploit Intelligence
- https://www.cisa.gov/news-events/alerts/2024/09/18/cisa-adds-five-known-exploited-vulnerabilities-catalog (certbund)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- druid-612f0710.json (github-poc)
- dependency-check-suppression.xml (github-poc)
- dependency-check-suppression.xml (github-poc)
…and 5 more exploits
Timeline
- CVE Published
- Dec 10, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Jan 7, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 23, 2022 EPSS Score
- Jul 17, 2022 EPSS Score
- Sep 10, 2022 EPSS Score
- Dec 28, 2022 EPSS Score
- Feb 20, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0119.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0119 advisory
- https://www.oracle.com/security-alerts/cpujan2023.html#AppendixUTIL advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0138.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0138 advisory
- https://www.oracle.com/security-alerts/cpujan2023.html#AppendixCAGBU advisory
- https://linux.oracle.com/errata/ELSA-2025-8432.html advisory
- https://www.ibm.com/support/pages/node/7239757 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0809.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0809 advisory
- https://www.ibm.com/support/pages/node/6967283 advisory
- https://www.ibm.com/support/pages/node/6967333 advisory
- https://www.ibm.com/support/pages/node/6980799 advisory
- https://www.ibm.com/support/pages/node/7108657 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-5ecc250449 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0607.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0607 advisory
- https://access.redhat.com/errata/RHSA-2022:5532 advisory
- https://access.redhat.com/errata/RHSA-2022:5596 advisory
- https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2022-125/index.html advisory
…and 51 more