Data Transmission Vulnerability in IBM QRadar SIEM
CVE-2024-28786
6.5MEDIUM
Summary
IBM QRadar SIEM version 7.5 is susceptible to a vulnerability where sensitive and security-critical data is transmitted in cleartext. This flaw allows unauthorized actors to potentially intercept the data using man in the middle techniques, posing significant security risks for organizations relying on QRadar SIEM for threat detection and response.
Affected Version(s)
QRadar SIEM 7.5
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published