CVE-2015-2008

4.4MEDIUM

Key Information:

Vendor
IBM
Status
Qradar Security Information And Event Manager
Vendor
CVE Published:
15 February 2016

Summary

IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.6 includes SSH private keys during backup operations, which allows remote authenticated administrators to obtain sensitive information by reading a backup archive.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21967632
x_refsource_CONFIRM

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.