Multiple vulnerabilities in IBM Security Guardium Key Lifecycle Manager
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 5 |
| CVE-ID | CVE-2024-45663 CVE-2024-41762 CVE-2024-41761 CVE-2024-40679 CVE-2024-37071 |
| CWE-ID | CWE-789 CWE-770 CWE-532 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
IBM Security Guardium Key Lifecycle Manager (GKLM) Server applications / Other server solutions |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
1) Uncontrolled Memory Allocation
EUVDB-ID: #VU104172
Risk: Medium
CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-45663
CWE-ID:
CWE-789 - Uncontrolled Memory Allocation
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources. A remote user can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Security Guardium Key Lifecycle Manager (GKLM): 4.1 - 4.2.1
CPE2.3- cpe:2.3:a:ibm_corporation:sgklm:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.2:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7177802
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU104124
Risk: Medium
CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-41762
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to application allocate resources without limits or throttling. A remote user can cause a server crash under certain conditions by sending a specially crafted query.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Security Guardium Key Lifecycle Manager (GKLM): 4.1 - 4.2.1
CPE2.3- cpe:2.3:a:ibm_corporation:sgklm:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.2:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7177802
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU104123
Risk: Low
CVSSv4.0: 2.3 [CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-41761
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources. A remote user can trigger a server crash under certain conditions by sending a specially crafted query.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Security Guardium Key Lifecycle Manager (GKLM): 4.1 - 4.2.1
CPE2.3- cpe:2.3:a:ibm_corporation:sgklm:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.2:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7177802
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Inclusion of Sensitive Information in Log Files
EUVDB-ID: #VU104121
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-40679
CWE-ID:
CWE-532 - Information Exposure Through Log Files
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to software stores sensitive information into log files. A local user can read the log files and gain access to sensitive data.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Security Guardium Key Lifecycle Manager (GKLM): 4.1 - 4.2.1
CPE2.3- cpe:2.3:a:ibm_corporation:sgklm:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.2:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7177802
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Uncontrolled Memory Allocation
EUVDB-ID: #VU104120
Risk: Low
CVSSv4.0: 2.3 [CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-37071
CWE-ID:
CWE-789 - Uncontrolled Memory Allocation
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly allocate memory. A remote user can trigger uncontrolled memory allocation and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Security Guardium Key Lifecycle Manager (GKLM): 4.1 - 4.2.1
CPE2.3- cpe:2.3:a:ibm_corporation:sgklm:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:sgklm:4.2:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7177802
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
