Fix Readme
Abstract
IBM QRadar Network Security firmware version 5.4.0.16, a firmware update for the XGS NGIPS platform, includes the following defect fixes to the IBM QRadar Network Security firmware Version 5.4.0.15. Additionally, this technote includes compatibility, installation, and other getting-started information.
Content
- 108707 SSH hmac-sha1 - Insecure HMAC vuln scan detections
- 108620 causeMismatch between value element counts in geronimo logs
- SB0010648 IBM QRadar Network Security is affected by Vulnerability in OpenSSH. (CVE-2021-41617)
- SB0010694 IBM QRadar Network Security is affected by multiple vulnerabilities in kernel.
- SB0010695 IBM QRadar Network Security is affected by multiple vulnerabilities in Expact library.
- SB0010696 IBM QRadar Network Security is affected by vulnerabilities in openldap. (CVE-2020-25709, CVE-2020-25710)
- SB0010697 IBM QRadar Network Security is affected by vulnerability in rpm. (CVE-2021-20271)
- SB0010698 IBM QRadar Network Security is affected by multiple vulnerabilities in kernel.
- SB0010700 IBM QRadar Network Security is affected by Vulnerability in busybox (CVE-2021-28831)
- SB0010703 IBM QRadar Network Security is affected by Vulnerability in OpenSSL (CVE-2022-0778)
- SB0010707 IBM QRadar Network Security is affected by Vulnerability in Cyrus SASL.(CVE-2022-24407)
- SB0010751 IBM QRadar Network Security is affected by Information Exposure PenTest vulnerabilities.(ase id:462657, ase id:462667)
- SB0010772 IBM QRadar Network Security is affected by hard-coded credentials exploits.
The following web browsers are currently supported by the IBM QRadar Network Security local management interface:
- Internet Explorer 10 or 11
- Firefox 28 and newer
- Google Chrome 34 and newer
To manage Network Security appliances using the SiteProtector System, you must apply the following database service packs before upgrading the appliance:
- SiteProtector System 3.1.1 - Install all DBSPs up to and including SP3.1.1 DBSP 3.1.1.96
Important: Ensure that the SiteProtector Core is at version 3.1.1.5 and newer before applying this Database Service Pack (DBSP) update to the IBM QRadar Network Security appliance.
Installation and Configuration
Prior to running firmware updates on a Network Security device, you should migrate your policies in SiteProtector to the new version. See technote #1959896 for more information:
For step-by-step installation instructions, see the Installing Updates topic in the IBM Knowledge Center:
Note: After installation, clear web browser cache, cookies, and temporary internet files.
For other configuration instructions, see the following topics in the IBM Knowledge Center:
- IBM QRadar Network Security V5.4.0 documentation
- Getting Started
- Configuring initial appliance settings in the LMI
Known issues
This release contains no known issues at this time.
Copyright statement
© Copyright IBM® Corporation 2012, 2022. U.S. Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
Related information:
Contacting IBM Support
Was this topic helpful?
Document Information
Modified date:
19 July 2022
UID
ibm16601541