IBM Qradar Security Information Event Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Qradar Security Information Event Manager.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Qradar Security Information Event Manager. Last year, in 2025 Qradar Security Information Event Manager had 10 security vulnerabilities published. Right now, Qradar Security Information Event Manager is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 10 | 5.60 |
| 2024 | 6 | 5.92 |
| 2023 | 3 | 5.60 |
| 2022 | 2 | 5.05 |
| 2021 | 13 | 6.45 |
| 2020 | 10 | 6.49 |
| 2019 | 15 | 5.80 |
| 2018 | 4 | 0.00 |
It may take a day or so for new Qradar Security Information Event Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Qradar Security Information Event Manager Security Vulnerabilities
IBM QRadar SIEM 7.5.0 UP14 InfoDiscl via Dir Info
CVE-2024-56464
2.7 - Low
- December 09, 2025
IBM QRadar SIEM 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability involving exposure of directory information. IBM has addressed this vulnerability in the latest update.
Exposure of Information Through Directory Listing
IBM QRadar SIEM 7.5 Credential Leak in Config Files (UP14)
CVE-2025-33119
6.5 - Medium
- November 12, 2025
IBM QRadar SIEM 7.5 through 7.5.0 UP14 stores user credentials in configuration files in source control which can be read by an authenticated user.
Password in Configuration File
Local Priv Esc via Improper Perms on QRadar 7.5 Configs
CVE-2025-0164
2.3 - Low
- September 14, 2025
IBM QRadar SIEM 7.5 through 7.5 Update Pack 13 Independent Fix 01 could allow a local privileged user to perform unauthorized actions on configuration files due to improper permission assignment.
Incorrect Permission Assignment for Critical Resource
Stored XSS in IBM QRadar SIEM 7.5 (CVE-2025-33118)
CVE-2025-33118
5.4 - Medium
- August 01, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 12 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
IBM QRadar SIEM 7.5.0 XSS via Authenticated User Web UI
CVE-2025-33097
5.4 - Medium
- July 15, 2025
IBM QRadar SIEM 7.5 - 7.5.0 UP12 IF02 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
IBM QRadar SIEM 7.5 Privileged Config Mod Enables Malicious Autoupdate Exec
CVE-2025-33117
9.1 - Critical
- June 19, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 could allow a privileged user to modify configuration files that would allow the upload of a malicious autoupdate file to execute arbitrary commands.
External Control of File Name or Path
IBM QRadar SIEM 7.5 XXE Vulnerability in XML Parser
CVE-2025-33121
7.1 - High
- June 19, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
XXE
IBM QRadar SIEM 7.5.* Update 12 Log Info Disclosure
CVE-2025-36050
6.2 - Medium
- June 19, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 stores potentially sensitive information in log files that could be read by a local user.
Insertion of Sensitive Information into Log File
IBM QRadar SIEM 7.5 CrossSite Scripting via Web UI
CVE-2024-56463
4.8 - Medium
- February 14, 2025
IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
IBM QRadar SIEM 7.5 Transmits Sensitive Data in Cleartext
CVE-2024-28786
6.5 - Medium
- January 28, 2025
IBM QRadar SIEM 7.5 transmits sensitive or security-critical data in cleartext in a communication channel that could be obtained by an unauthorized actor using man in the middle techniques.
Cleartext Transmission of Sensitive Information
IBM QRadar SIEM 7.5 Stored XSS Vulnerability in Web UI
CVE-2024-47107
5.4 - Medium
- December 07, 2024
IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
IBM QRadar SIEM v7.5 Privileged User Disclosure via User Mgmt
CVE-2024-27269
- May 14, 2024
IBM QRadar SIEM 7.5 could allow a privileged user to configure user management that would disclose unintended sensitive information across tenants. IBM X-Force ID: 284575.
Incorrect User Management
IBM QRadar SIEM 7.5 Improper Cert Validation Allows Unauthorized Actions
CVE-2023-50949
8.1 - High
- April 11, 2024
IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706.
Improper Certificate Validation
IBM QRadar SIEM 7.5 XSS Vulnerability Allows Arbitrary JS Injection
CVE-2024-28784
5.4 - Medium
- March 27, 2024
IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 285893.
XSS
IBM QRadar SIEM 7.5 Stored XSS in Web UI
CVE-2023-50961
5.4 - Medium
- March 27, 2024
IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 275939.
XSS
IBM QRadar SIEM 7.5 Offense Rule Response Info Disclosure (CVE-2023-50950)
CVE-2023-50950
5.3 - Medium
- January 17, 2024
IBM QRadar SIEM 7.5 could disclose sensitive email information in responses from offense rules. IBM X-Force ID: 275709.
IBM QRadar SIEM 7.5 Privileged Data Leakage Vulnerability
CVE-2023-47146
6.5 - Medium
- December 19, 2023
IBM Qradar SIEM 7.5 could allow a privileged user to obtain sensitive domain information due to data being misidentified. IBM X-Force ID: 270372.
IBM QRadar SIEM 7.5.0 XSS in Web UI leads to credential disclosure
CVE-2023-43057
5.4 - Medium
- November 11, 2023
IBM QRadar SIEM 7.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 267484.
IBM QRadar SIEM 7.5 Info Exposure via Domain Security Profile (CVE-2023-43041)
CVE-2023-43041
4.9 - Medium
- October 29, 2023
IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808.
IBM QRadar SIEM 7.3
CVE-2021-39041
5.3 - Medium
- July 12, 2022
IBM QRadar SIEM 7.3, 7.4, and 7.5 may be vulnerable to partial denial of service attack, resulting in some protocols not listening to specified ports. IBM X-Force ID: 214028.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2022-22320
4.8 - Medium
- May 11, 2022
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 218367.
XSS
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain
CVE-2021-29880
6.5 - Medium
- August 13, 2021
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain. IBM X-Force ID: 206979.
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key
CVE-2021-20401
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 196075.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2021-20397
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 196017.
IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data
CVE-2020-5013
8.1 - High
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 193245.
XXE
IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way
CVE-2020-4993
4.9 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way that may be vulnerable to path traversal attacks. IBM X-Force ID: 192905.
Directory traversal
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication
CVE-2020-4979
9.8 - Critical
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication. An attacker that is able to comprimise or spoof traffic between hosts may be able to execute arbitrary commands. IBM X-Force D: 192538.
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key
CVE-2020-4932
7.8 - High
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 191748.
Use of Hard-coded Credentials
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4929
5.4 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 191706.
XSS
IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about other domains
CVE-2020-4883
6.5 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about other domains which could be used in further attacks against the system. IBM X-Force ID: 190907.
Information Disclosure
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could
CVE-2020-4888
8.8 - High
- January 28, 2021
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 190912.
Marshaling, Unmarshaling
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could
CVE-2020-4789
6.5 - Medium
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 189302.
Directory traversal
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1
CVE-2020-4787
2.3 - Low
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 189224.
SSRF
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1
CVE-2020-4786
4.3 - Medium
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 189221.
SSRF
IBM QRadar 7.2.0 thorugh 7.2.9 could
CVE-2020-4486
8.1 - High
- August 11, 2020
IBM QRadar 7.2.0 thorugh 7.2.9 could allow an authenticated user to overwrite or delete arbitrary files due to a flaw after WinCollect installation. IBM X-Force ID: 181861.
IBM QRadar 7.2.0 through 7.2.9 could
CVE-2020-4485
6.5 - Medium
- August 11, 2020
IBM QRadar 7.2.0 through 7.2.9 could allow an authenticated user to disable the Wincollect service which could aid an attacker in bypassing security mechanisms in future attacks. IBM X-Force ID: 181860.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4513
6.1 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182368.
XSS
IBM QRadar SIEM 7.3 and 7.4 could
CVE-2020-4512
7.2 - High
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 could allow a remote privileged user to execute commands.
Shell injection
IBM QRadar SIEM 7.3 and 7.4 could
CVE-2020-4511
6.5 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 could allow an authenticated user to cause a denial of service of the qflow process by sending a malformed sflow command. IBM X-Force ID: 182366.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data
CVE-2020-4510
5.5 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 182365.
XXE
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4364
5.4 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 178961.
XSS
IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation
CVE-2020-4151
6.5 - Medium
- April 14, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation. IBM X-Force ID: 174201.
AuthZ
IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive information to unauthorized users
CVE-2019-4559
5.3 - Medium
- January 10, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 166355.
Information Disclosure
IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker
CVE-2019-4508
7.8 - High
- January 10, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. IBM X-Force ID: 164429.
Insufficiently Protected Credentials
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4470
5.4 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163779.
XSS
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4454
5.4 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163618.
XSS
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to incorrect authorization in some components which could
CVE-2019-4509
4.3 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to incorrect authorization in some components which could allow an authenticated user to obtain sensitive information. IBM X-Force ID: 164430.
AuthZ
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4581
6.1 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 167239.
XSS
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF)
CVE-2019-4262
5.3 - Medium
- September 26, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the QRadar system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 160014.
SSRF
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user
CVE-2019-4212
8.8 - High
- July 25, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 159132.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Qradar Security Information Event Manager or by IBM? Click the Watch button to subscribe.
