Plain Text Credential Exposure in IBM Security QRadar by IBM
CVE-2024-45638

4.1MEDIUM

Key Information:

Vendor: IBM
Status: Qradar Edr
Vendor: CVE Published:; 14 March 2025

What is CVE-2024-45638?

IBM Security QRadar 3.12 EDR has a significant vulnerability where user credentials are stored in plaintext. This design flaw allows local privileged users to access sensitive information, posing a severe risk to the integrity of the system's security. Organizations using this version of QRadar should take immediate action to mitigate the risk and protect their data from potential unauthorized access. For further details, please refer to the vendor's advisory.

Affected Version(s)

QRadar EDR 3.12

References

https://www.ibm.com/support/pages/node/7185938

vendor-advisory

CVSS V3.1

Score:

4.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 14, 2025
Vulnerability Reserved
Sep 3, 2024