SQL Injection Vulnerability in IBM Security QRadar Incident Forensics
CVE-2015-1989
Currently unrated
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 8 November 2015
Summary
A SQL injection vulnerability exists in IBM Security QRadar Incident Forensics 7.2.x versions prior to 7.2.5 Patch 5. This flaw allows remote authenticated users to execute arbitrary SQL commands through unspecified vectors, potentially leading to unauthorized access to sensitive data and disruption of operations. It is crucial for organizations using affected versions to apply the necessary security patches to mitigate the risk.
References
Timeline
Vulnerability published
Vulnerability Reserved