IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating system.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HIBM Qradar Security Information And Event Manager
APPIbm7.5.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Referencje
Powiązane podatności
CVE-2014-7169CRITICAL9.8⚠ KEVten sam produkt
GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the...
CVE-2014-6271CRITICAL9.8⚠ KEVten sam produkt
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variab...
CVE-2025-33117CRITICAL9.1PL ✓ten sam produkt
IBM QRadar SIEM — manipulacja konfiguracją umożliwia wykonanie dowolnych poleceń
CVE-2021-38869CRITICAL9.8ten sam produkt
IBM QRadar SIEM 7.3, 7.4, and 7.5 in some situations may not automatically log users out after they exceede th...
CVE-2021-20399CRITICAL9.1ten sam produkt
IBM Qradar SIEM 7.3.0 to 7.3.3 Patch 8 and 7.4.0 to 7.4.3 GA is vulnerable to an XML External Entity Injection...