Monday, April 6, 2020

Security Bulletin: Log Analysis is vulnerable to Injection Attacks

Apr 6, 2020 8:00 pm EDT

Categorized: High Severity

Share this post:

Operating system commands can be included in user input as parameters and be executed on the system which lead to injection attacks.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Log Analysis 1.3.1
Log Analysis 1.3.2
Log Analysis 1.3.3
Log Analysis 1.3.4
Log Analysis 1.3.5
Log Analysis 1.3.6

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6155553



from IBM Product Security Incident Response Team https://ift.tt/3bUDZMq

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.