Rewterz Threat Advisory – CVE-2023-50948 – IBM Storage Fusion HCI Vulnerability

Rewterz Threat Update – New North Korean-Linked MacOS Backdoor ‘SpectralBlur’ Emerges

January 8, 2024

Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs

January 8, 2024

Rewterz Threat Advisory – CVE-2023-50948 – IBM Storage Fusion HCI Vulnerability

Severity

Medium

Analysis Summary

CVE-2023-50948

IBM Storage Fusion HCI 2.1.0 through 2.6.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-50948

Affected Vendors

IBM

Affected Products

IBM Storage Fusion HCI 2.1.0
IBM Storage Fusion HCI 2.6.1

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Rewterz Threat Update – New North Korean-Linked MacOS Backdoor ‘SpectralBlur’ Emerges

Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs

Rewterz Threat Advisory – CVE-2023-50948 – IBM Storage Fusion HCI Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan