← back
CVE-2025-36379

IBM Security QRadar EDR Software has multiple vulnerabilities

CVSS 5.9 MEDIUMEPSS 0.1%CWE-326
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
17 Feb 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
IBM · Security QRadar EDR

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ibm.com/support/pages/node/7260390