Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities

February 20, 2024

Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs

February 20, 2024

Rewterz Threat Advisory – Multiple IBM QRadar Suite Vulnerabilities

February 20, 2024

Severity

High

Analysis Summary

CVE-2023-50951 CVSS:4

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 in some circumstances will log some sensitive information about invalid authorization attempts.

CVE-2024-22335, CVE-2024-22336, CVE-2024-22337

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-50951
CVE-2024-22335
CVE-2024-22336
CVE-2024-22337

Affected Vendors

IBM

Affected Products

IBM Cloud Pak for Security 1.10.0.0
IBM Cloud Pak for Security 1.10.11.0
IBM QRadar Suite Software 1.10.12.0
IBM QRadar Suite Software 1.10.17.0

Remediation

Refer to IBM Security Advisory for patch, upgrade, or suggested workaround information.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities

Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.