← back
CVE-2023-47726

IBM QRadar Suite improper input validation

CVSS 7.1 HIGHEPSS 0.4%CWE-1287
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.1EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
18 Jun 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0 through 1.10.21.0 could allow an authenticated user to execute certain arbitrary commands due to improper input validation. IBM X-Force ID: 272087.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Affected products
IBM · Cloud Pak for SecurityIBM · QRadar Suite Software

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/272087https://https://www.ibm.com/support/pages/node/7157750