CVE-2021-38939
CVE-2021-38939
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 3.7EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
27 Apr 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that could be read by an user with access to creating domains. IBM X-Force ID: 211037.
CVSS:3.0/AV:N/AC:H/C:L/S:U/PR:N/I:N/A:N/UI:N/RC:C/E:U/RL:O
Affected products
IBM · QRadar SIEM