Sensitive Information Exposure in IBM QRadar SIEM Product
CVE-2025-36051

6.2MEDIUM

Key Information:

Vendor: IBM
Status: Qradar Siem
Vendor: CVE Published:; 19 March 2026

What is CVE-2025-36051?

IBM QRadar SIEM versions 7.5.0 and 7.5.0 Update Package 14 are vulnerable as they store potentially sensitive information in configuration files. This vulnerability allows local users to access sensitive data, which may lead to unauthorized access and security breaches. It's crucial to apply the necessary patches and updates to secure your system.

Affected Version(s)

QRadar SIEM 7.5.0 <= 7.5.0 Update Pack 14

References

https://www.ibm.com/support/pages/node/7266709

vendor-advisorypatch

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 19, 2026
Vulnerability Reserved
Apr 15, 2025

CVE-2025-36051 Data

JSON