← back
CVE-2025-13995

IBM QRadar SIEM Information Disclosure

CVSS 5 MEDIUMEPSS 0.2%CWE-1286
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
19 Mar 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 could allow an attacker with access to one tenant to access hostname data from another tenant's account.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Affected products
IBM · QRadar

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ibm.com/support/pages/node/7266709