Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 13 |
| CVE-ID | CVE-2022-36083 CVE-2022-21123 CVE-2022-21125 CVE-2022-21166 CVE-2021-21797 CVE-2022-35941 CVE-2021-42248 CVE-2021-42836 CVE-2022-40186 CVE-2022-41316 CVE-2021-36090 CVE-2020-29529 CVE-2020-7219 |
| CWE-ID | CWE-400 CWE-200 CWE-415 CWE-617 CWE-185 CWE-264 CWE-287 CWE-22 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
IBM Cloud Pak for Watson AIOps Other software / Other software solutions |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains information about 13 vulnerabilities.
1) Resource exhaustion
EUVDB-ID: #VU69615
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-36083
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to the way application handles untrusted JWE tokens A remote attacker can trigger pass the PBKDF2-based JWE key with an extremely high PBES2 Count value and consume significant amount of CPU time, resulting in a denial of service conditions.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Information disclosure
EUVDB-ID: #VU64364
Risk: Low
CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-21123
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows an attacker to gain access to potentially sensitive information.
The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Information disclosure
EUVDB-ID: #VU64365
Risk: Low
CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-21125
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows an attacker to gain access to potentially sensitive information.
The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Information disclosure
EUVDB-ID: #VU64366
Risk: Low
CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-21166
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows an attacker to gain access to potentially sensitive information.
The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Double Free
EUVDB-ID: #VU57384
Risk: High
CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2021-21797
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in the JavaScript implementation. A remote attacker can trick a victim to open a specially crafted document, trigger double free error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Reachable Assertion
EUVDB-ID: #VU69614
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-35941
CWE-ID:
CWE-617 - Reachable Assertion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a reachable assertion within the AvgPoolOp function. A remote attacker can pass a negative value for the ksize argument to the affected function and crash the application.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Incorrect Regular Expression
EUVDB-ID: #VU64823
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-42248
CWE-ID:
CWE-185 - Incorrect Regular Expression
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient input validation when processing regular expressions. A remote attacker can pass specially crafted JSON input to the application and perform regular expression denial of service (ReDos) attack.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Incorrect Regular Expression
EUVDB-ID: #VU64826
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-42836
CWE-ID:
CWE-185 - Incorrect Regular Expression
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient input validation when processing regular expressions. A remote attacker can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU67534
Risk: Low
CVSSv4.0: 0.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-40186
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to the application permits usage of entity aliases mapped to a single entity share with the same alias name. A local user can create a share with the same alias name as used by another user and wait for the other user to login. After the victim logs in, the attacker will be able to gain access to files metadata in the victim's share.
Successful exploitation of the vulnerability requires that templated ACL policy is enabled and that the policy uses alias.Name, which is derived from the alias name.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Improper Authentication
EUVDB-ID: #VU68254
Risk: Medium
CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-41316
CWE-ID:
CWE-287 - Improper Authentication
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to an error in the Certificate Revocation Lists (CRLs) implementation, which prevented Vault from denying access to users with revoked certificates without application reboot. As a result, when using TLS certificate authentication, Vault did not
correctly perform CRL revocation checks if login occurred between Vault
startup (or invalidation) and a manual retrieval of the CRL, allowing users to continue using the application with revoked certificates.
Install update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Resource exhaustion
EUVDB-ID: #VU54853
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-36090
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources when processing ZIP archives. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Path traversal
EUVDB-ID: #VU48809
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-29529
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when handling files and symlinks in Unpack function. A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Resource exhaustion
EUVDB-ID: #VU24942
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-7219
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to the HTTP/RPC services allowed unbounded resource usage. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Cloud Pak for Watson AIOps: 3.1 - 3.5
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_cloud_pak_for_watson_aiops:3.3:*:*:*:*:*:*:*
https://www.ibm.com/blogs/psirt/security-bulletin-for-ibm-cloudpak-for-watson-aiops-3-5-1/
https://www.ibm.com/support/pages/node/6830857
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
