SB2022012734 - Multiple vulnerabilities in IBM UrbanCode Release
Published: January 27, 2022
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Infinite loop (CVE-ID: CVE-2021-41079)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop when processing certain TLS packets. A remote attacker can send a specially crafted packet to the application, consume all available system resources and cause denial of service conditions.
Successful exploitation of vulnerability requires that Apache Tomcat is configured to use NIO+OpenSSL or NIO2+OpenSSL for TLS.
2) Information disclosure (CVE-ID: CVE-2021-24122)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to JSP source code disclosure in some configurations, when serving resources from a network location using the NTFS file system. The root cause was the unexpected behaviour of the JRE API
File.getCanonicalPath() which in turn was caused by the inconsistent
behaviour of the Windows API (FindFirstFileW) in some circumstances.A remote attacker can send a specially crafted request to the application and view the JSP source code.
Remediation
Install update from vendor's website.
References
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-urbancode-release-is-affected-by-cve-2021-41079/"
- https://www.ibm.com/blogs/psirt/security-bulletin-ibm-urbancode-release-is-affected-by-cve-2021-41079/</a></p><p><a
- https://www.ibm.com/support/pages/node/6550788"
- https://www.ibm.com/support/pages/node/6550788</a></p><p>
- https://www.ibm.com/support/pages/node/6550770</p><p><br></p>