平台
other
组件
bigfix-platform
修复版本
9.2.1
9.5.1
CVE-2019-4061 is a security vulnerability affecting IBM BigFix Platform versions 9.2 and 9.5. Due to a lack of authenticated access controls, an attacker can remotely query the relay and gather information about deployed updates and fixlets. This vulnerability has a CVSS score of 5.3 (MEDIUM) and is fixed in version 9.5.1.
The primary impact of CVE-2019-4061 is the exposure of sensitive information regarding the updates and fixlets deployed within the BigFix environment. An attacker could leverage this information to gain insights into the system's configuration, identify potential vulnerabilities in deployed software, and plan targeted attacks. While the vulnerability does not directly lead to code execution or data breaches, the information leakage can significantly increase the attack surface and facilitate further exploitation attempts. The IBM X-Force ID associated with this vulnerability is 156869.
CVE-2019-4061 was published on February 27, 2019. The vulnerability is considered to have a medium probability of exploitation (EPSS score likely in the medium range, though not explicitly stated). Public proof-of-concept (POC) code is not widely available, but the vulnerability's ease of exploitation suggests a potential for opportunistic attacks. Refer to IBM's security advisories for further details and mitigation guidance.
漏洞利用状态
EPSS
80.30% (99% 百分位)
CVSS 向量
The recommended mitigation for CVE-2019-4061 is to upgrade to version 9.5.1 or later, which includes the fix for this vulnerability. If upgrading is not immediately possible, enable authenticated access to the relay. This can be configured within the BigFix Platform administration console. Ensure that only authorized users have access to the relay and that strong authentication mechanisms are in place. Regularly review relay access logs for any suspicious activity.
Actualice IBM BigFix Platform a una versión que tenga habilitado el acceso autenticado para evitar que un atacante consulte el relay de forma remota y recopile información sobre las actualizaciones y fixlets implementados en los sitios asociados. Consulte la documentación de IBM para obtener instrucciones específicas sobre cómo habilitar la autenticación.
漏洞分析和关键警报直接发送到您的邮箱。
It's a vulnerability in IBM BigFix Platform allowing remote querying of relay information, exposing updates and fixlets.
If you're using BigFix Platform versions 9.2 or 9.5, you are potentially affected.
Upgrade to version 9.5.1 or later, or enable authenticated access to the relay.
While no widespread exploitation has been reported, the vulnerability's ease of exploitation suggests a potential risk.
Consult IBM's security advisories and the CVE entry for detailed information: https://cve.mitre.org/cgi-bin/cve/search?keyword=CVE-2019-4061