Trustwave Database Security Knowledgebase (ShatterKB) 6.24 is now available. It introduces new checks for IBM DB2 LUW, Microsoft SQL Server, Oracle and MongoDB.
New Checks - IBM DB2 LUW
IBM Db2 is vulnerable to an information disclosure caused by improper privilege management (CVE-2022-22483)
Description: Check the database version to determine if the patch for CVE-2022-22483 is missing.
Risk: Medium
IBM Db2 is vulnerable to a denial of service (CVE-2022-35637)
Description: Check the database version to determine if the patch for CVE-2022-35637 is missing.
Risk: Medium
New Checks - Microsoft SQL Server
Auditing of successful and failed login attempts for contained DB authentication
Description: Verify that auditing is enabled for both successful and failed login attempts for contained DB authentication
Risk: Medium
New Checks - MongoDB
Ensure that the auditLog destination value is set to syslog
Description: Verify that the MongoDB config option auditLog.destination is set to the value 'syslog'.
Risk: Low
New Checks - Oracle
Use Oracle TDE for At-Rest Data Encryption
Description: Verify that database objects are encrypted on a column, table, and tablespace level.
Risk: Medium
Availability
- Available to all AppDetectivePRO and DbProtect customers with maintenance (subscription or perpetual) in good standing at no additional cost.
- Download SHATTER Knowledgebase from the Trustwave Support Portal.
- AppDetectivePRO customers can use the Updater within the product as well
