Sensitive Local-Cache Information Exposure in IBM Security QRadar Incident Forensics
CVE-2015-1996

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
8 November 2015

Summary

A vulnerability in IBM Security QRadar Incident Forensics, specifically versions prior to 7.2.5 Patch 5, allows attackers who have physical access to an unattended workstation to retrieve sensitive information from the local cache due to the improper handling of HTTPS response caching. This flaw presents a significant risk for environments where security is paramount and unattended access could lead to data compromise.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.