Siemens Patches Critical Vulnerabilities in Sicam Products Targeting Energy Sector Security

June 27, 2024

Multiple GitLab Community and Enterprise Edition Vulnerabilities

June 27, 2024

Multiple IBM Security Verify Access Vulnerabilities

June 27, 2024

Severity

Medium

Analysis Summary

CVE-2024-31883 CVSS:5.3

IBM Security Verify Access 10.0.0.0 through 10.0.7.1, under certain configurations, could allow an unauthenticated attacker to cause a denial of service due to asymmetric resource consumption.

CVE-2023-30430 CVSS:6.2

IBM Security Verify Access 10.0.0 through 10.0.7.1could allow a local user to obtain sensitive information from trace logs.

Impact

Denial of Service
Information Disclosure

Indicators of Compromise

CVE

CVE-2024-31883
CVE-2023-30430

Affected Vendors

IBM

Affected Products

IBM Security Verify Access 10.0.0.0
IBM Security Verify Access 10.0.7.1

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Threat Actors Abuse Gmail SMTP in Sophisticated Python Package Attack

DarkCrystal RAT aka DCRat – Active IOCs

Exploiting NodeJS Jenkins Agents for Remote Code Execution

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Siemens Patches Critical Vulnerabilities in Sicam Products Targeting Energy Sector Security

Multiple GitLab Community and Enterprise Edition Vulnerabilities

Severity

Medium

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.