March 6, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities
February 20, 2024Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs
February 20, 2024Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities
February 20, 2024Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs
February 20, 2024
Severity
High
Analysis Summary
CVE-2023-50951 CVSS:4
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 in some circumstances will log some sensitive information about invalid authorization attempts.
CVE-2024-22335, CVE-2024-22336, CVE-2024-22337
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-50951
- CVE-2024-22335
- CVE-2024-22336
- CVE-2024-22337
Affected Vendors
IBM
Affected Products
- IBM Cloud Pak for Security 1.10.0.0
- IBM Cloud Pak for Security 1.10.11.0
- IBM QRadar Suite Software 1.10.12.0
- IBM QRadar Suite Software 1.10.17.0
Remediation
Refer to IBM Security Advisory for patch, upgrade, or suggested workaround information.