Rewterz Threat Advisory – Multiple IBM QRadar Suite Vulnerabilities

Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities

February 20, 2024

Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs

February 20, 2024

Rewterz Threat Advisory – Multiple IBM QRadar Suite Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-50951 CVSS:4

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 in some circumstances will log some sensitive information about invalid authorization attempts.

CVE-2024-22335, CVE-2024-22336, CVE-2024-22337

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-50951
CVE-2024-22335
CVE-2024-22336
CVE-2024-22337

Affected Vendors

IBM

Affected Products

IBM Cloud Pak for Security 1.10.0.0
IBM Cloud Pak for Security 1.10.11.0
IBM QRadar Suite Software 1.10.12.0
IBM QRadar Suite Software 1.10.17.0

Remediation

Refer to IBM Security Advisory for patch, upgrade, or suggested workaround information.

Rewterz Threat Advisory – Multiple Microsoft Products Vulnerabilities

Rewterz Threat Alert – RansomHouse Operation Utilizes New MrAgent Tool to Automate VMware ESXi Attacks – Active IOCs

Rewterz Threat Advisory – Multiple IBM QRadar Suite Vulnerabilities

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan