IBM QRadar Suite Software Vulnerability Could Allow Arbitrary Commands Execution
CVE-2023-47726
7.1HIGH
Key Information
- Vendor
- IBM
- Status
- Qradar Suite Software
- Cloud Pak For Security
- Vendor
- Published:
- 18 June 2024
Summary
IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0 through 1.10.21.0 could allow an authenticated user to execute certain arbitrary commands due to improper input validation. IBM X-Force ID: 272087.
Affected Version(s)
QRadar Suite Software <= 1.10.21.0
Cloud Pak for Security <= 1.10.21.0
CVSS V3.1
Score:
7.1
Severity:
HIGH
Confidentiality:
HIGH
Integrity:
LOW
Availability:
NONE
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database