Information Disclosure Vulnerability in IBM QRadar SIEM
CVE-2022-30613

4.4MEDIUM

Key Information:

Vendor: IBM
Status: Qradar Siem
Vendor: CVE Published:; 7 October 2022

Summary

IBM QRadar SIEM versions 7.4 and 7.5 are susceptible to a vulnerability that may allow a privileged user to access sensitive information through a local service. This could lead to unauthorized data exposure, highlighting the need for users to ensure their systems are appropriately secured and updated according to IBM's recommendations.

Affected Version(s)

QRadar SIEM 7.4.0

QRadar SIEM 7.5.0

References

https://www.ibm.com/support/pages/node/6826693

https://exchange.xforce.ibmcloud.com/vulnerabilities/227366

vdb-entry

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 7, 2022
Vulnerability Reserved
May 12, 2022