Sensitive Information Exposure in IBM QRadar by IBM
CVE-2017-1733

4MEDIUM

Key Information:

Vendor
IBM
Status
Security Qradar Siem
Vendor
CVE Published:
4 April 2018

Summary

IBM QRadar 7.3 contains a vulnerability that allows for the unintentional exposure of sensitive information stored in log files. These log files can be accessed by local users, potentially leading to unauthorized information disclosure. This vulnerability is a concern since it can compromise sensitive data and affect the overall security posture of organizations utilizing the product.

Affected Version(s)

Security QRadar SIEM 7.3

References

http://www.securityfocus.com/bid/103736
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/134914
x_refsource_MISC
http://www.ibm.com/support/docview.wss?uid=swg22015243
x_refsource_CONFIRM

CVSS V3.1

Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.