SQL Injection Vulnerability in IBM Security QRadar Incident Forensics
CVE-2015-1989

Currently unrated

Key Information:

Vendor
IBM
Status
Security Qradar Incident Forensics
Vendor
CVE Published:
8 November 2015

Summary

A SQL injection vulnerability exists in IBM Security QRadar Incident Forensics 7.2.x versions prior to 7.2.5 Patch 5. This flaw allows remote authenticated users to execute arbitrary SQL commands through unspecified vectors, potentially leading to unauthorized access to sensitive data and disruption of operations. It is crucial for organizations using affected versions to apply the necessary security patches to mitigate the risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21970116
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.