Unauthorized Action Vulnerability in IBM QRadar SIEM by IBM
CVE-2025-0164

2.3LOW

Key Information:

Vendor: IBM
Status: Qradar Siem
Vendor: CVE Published:; 14 September 2025

What is CVE-2025-0164?

IBM QRadar SIEM versions 7.5 and 7.5 Update Pack 13 Independent Fix 01 are affected by a vulnerability that allows local privileged users to execute unauthorized actions on configuration files due to improper permission assignments. This can potentially lead to configuration tampering and compromise the integrity of the system. Organizations using affected versions are urged to apply the relevant patches and remediate the vulnerabilities promptly to safeguard their systems.

Affected Version(s)

QRadar SIEM 7.5 <= 7.5.0 UP13 IF01

References

https://www.ibm.com/support/pages/node/7244784

vendor-advisorypatch

CVSS V3.1

Score:

2.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 14, 2025
Vulnerability Reserved
Dec 31, 2024

Credit

John Zuccato, Rodney Ryan, Chris Shepherd, Vince Dragnea, Ben Goodspeed, Dawid Bak