SymmetricalDataSecurity: Security Bulletin: IBM Resilient OnPrem could allow an attacker on a restricted internal network to provide the server with a spoofed source IP address. (CVE-2020-4864)

Wednesday, October 28, 2020

Security Bulletin: IBM Resilient OnPrem could allow an attacker on a restricted internal network to provide the server with a spoofed source IP address. (CVE-2020-4864)

Oct 28, 2020 8:02 pm EDT

Share this post:

The X-Forwarded-For Header in a request can inadvertently log an incorrect IP address when connecting to specific internal networks. The affects only on-premises customers within a restricted network.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
Resilient OnPrem	IBM Security SOAR

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6356441

from IBM Product Security Incident Response Team https://ift.tt/2HMvOZ3

SymmetricalDataSecurity

Wednesday, October 28, 2020

Security Bulletin: IBM Resilient OnPrem could allow an attacker on a restricted internal network to provide the server with a spoofed source IP address. (CVE-2020-4864)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews