Unauthorized Actions Due to Certificate Validation Flaw
CVE-2023-50949

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Qradar Siem
Vendor: CVE Published:; 11 April 2024

Summary

IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706.

Affected Version(s)

QRadar SIEM 7.5

References

https://www.ibm.com/support/pages/node/7147933

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/275706

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 11, 2024
Vulnerability Reserved
Dec 16, 2023

.