Remote Command Execution Vulnerability in IBM QRadar Incident Forensics
CVE-2016-9726

8.8HIGH

Key Information:

Vendor: IBM
Status: IBM Security Qradar Siem 7.1 Mr1, 7.1, 7.0, 7.2, 7.1 Mr2, 7, 7.1 Mr2, 7.2.3
Vendor: CVE Published:; 7 March 2017

Summary

IBM QRadar Incident Forensics 7.2 is susceptible to a vulnerability that enables remote authenticated attackers to execute arbitrary commands on the system. This occurs when an attacker sends a specially-crafted request, which can lead to unauthorized actions within the affected system. This vulnerability highlights the importance of securing systems against unauthorized access and command execution.

Affected Version(s)

IBM Security QRadar SIEM 7.1 MR1, 7.1, 7.0, 7.2, 7.1 MR2, 7, 7.1 MR2, 7.2.3 IBM Security QRadar SIEM 7.1 MR1, 7.1, 7.0, 7.2, 7.1 MR2, 7, 7.1 MR2, 7.2.3

References

http://www.ibm.com/support/docview.wss?uid=swg21999542

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 7, 2017
Vulnerability Reserved
Dec 1, 2016