IBM Qradar Security Information Event Manager
By the Year
In 2024 there have been 1 vulnerability in IBM Qradar Security Information Event Manager with an average score of 5.3 out of ten. Last year Qradar Security Information Event Manager had 3 security vulnerabilities published. At the current rates, it appears that the number of vulnerabilities last year and this year may equal out. Last year, the average CVE base score was greater by 0.30
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 1 | 5.30 |
2023 | 3 | 5.60 |
2022 | 2 | 5.05 |
2021 | 13 | 6.52 |
2020 | 10 | 6.49 |
2019 | 15 | 5.87 |
2018 | 4 | 7.63 |
It may take a day or so for new Qradar Security Information Event Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Qradar Security Information Event Manager Security Vulnerabilities
IBM QRadar SIEM 7.5 could disclose sensitive email information in responses from offense rules
CVE-2023-50950
5.3 - Medium
- January 17, 2024
IBM QRadar SIEM 7.5 could disclose sensitive email information in responses from offense rules. IBM X-Force ID: 275709.
IBM Qradar SIEM 7.5 could allow a privileged user to obtain sensitive domain information due to data being misidentified
CVE-2023-47146
6.5 - Medium
- December 19, 2023
IBM Qradar SIEM 7.5 could allow a privileged user to obtain sensitive domain information due to data being misidentified. IBM X-Force ID: 270372.
IBM QRadar SIEM 7.5.0 is vulnerable to cross-site scripting
CVE-2023-43057
5.4 - Medium
- November 11, 2023
IBM QRadar SIEM 7.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 267484.
IBM QRadar SIEM 7.5 is vulnerable to information exposure
CVE-2023-43041
4.9 - Medium
- October 29, 2023
IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808.
IBM QRadar SIEM 7.3
CVE-2021-39041
5.3 - Medium
- July 12, 2022
IBM QRadar SIEM 7.3, 7.4, and 7.5 may be vulnerable to partial denial of service attack, resulting in some protocols not listening to specified ports. IBM X-Force ID: 214028.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2022-22320
4.8 - Medium
- May 11, 2022
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 218367.
XSS
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain
CVE-2021-29880
6.5 - Medium
- August 13, 2021
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain. IBM X-Force ID: 206979.
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key
CVE-2020-4932
7.8 - High
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 191748.
Use of Hard-coded Credentials
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key
CVE-2021-20401
7.8 - High
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 196075.
Use of Hard-coded Credentials
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2021-20397
6.1 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 196017.
XSS
IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data
CVE-2020-5013
8.1 - High
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 193245.
XXE
IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way
CVE-2020-4993
4.9 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way that may be vulnerable to path traversal attacks. IBM X-Force ID: 192905.
Directory traversal
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication
CVE-2020-4979
9.8 - Critical
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication. An attacker that is able to comprimise or spoof traffic between hosts may be able to execute arbitrary commands. IBM X-Force D: 192538.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4929
5.4 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 191706.
XSS
IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about other domains
CVE-2020-4883
6.5 - Medium
- May 05, 2021
IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about other domains which could be used in further attacks against the system. IBM X-Force ID: 190907.
Information Disclosure
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could
CVE-2020-4888
8.8 - High
- January 28, 2021
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 190912.
Marshaling, Unmarshaling
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could
CVE-2020-4789
6.5 - Medium
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 189302.
Directory traversal
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1
CVE-2020-4787
2.3 - Low
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 189224.
XSPA
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1
CVE-2020-4786
4.3 - Medium
- January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 189221.
XSPA
IBM QRadar 7.2.0 thorugh 7.2.9 could
CVE-2020-4486
8.1 - High
- August 11, 2020
IBM QRadar 7.2.0 thorugh 7.2.9 could allow an authenticated user to overwrite or delete arbitrary files due to a flaw after WinCollect installation. IBM X-Force ID: 181861.
IBM QRadar 7.2.0 through 7.2.9 could
CVE-2020-4485
6.5 - Medium
- August 11, 2020
IBM QRadar 7.2.0 through 7.2.9 could allow an authenticated user to disable the Wincollect service which could aid an attacker in bypassing security mechanisms in future attacks. IBM X-Force ID: 181860.
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4364
5.4 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 178961.
XSS
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data
CVE-2020-4510
5.5 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 182365.
XXE
IBM QRadar SIEM 7.3 and 7.4 could
CVE-2020-4511
6.5 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 could allow an authenticated user to cause a denial of service of the qflow process by sending a malformed sflow command. IBM X-Force ID: 182366.
IBM QRadar SIEM 7.3 and 7.4 could
CVE-2020-4512
7.2 - High
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 could allow a remote privileged user to execute commands.
Shell injection
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting
CVE-2020-4513
6.1 - Medium
- July 14, 2020
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182368.
XSS
IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation
CVE-2020-4151
6.5 - Medium
- April 14, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation. IBM X-Force ID: 174201.
AuthZ
IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker
CVE-2019-4508
7.8 - High
- January 10, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. IBM X-Force ID: 164429.
Insufficiently Protected Credentials
IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive information to unauthorized users
CVE-2019-4559
5.3 - Medium
- January 10, 2020
IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 166355.
Information Disclosure
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to incorrect authorization in some components which could
CVE-2019-4509
4.3 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to incorrect authorization in some components which could allow an authenticated user to obtain sensitive information. IBM X-Force ID: 164430.
AuthZ
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4470
5.4 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163779.
XSS
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4454
5.4 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163618.
XSS
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting
CVE-2019-4581
6.1 - Medium
- November 09, 2019
IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 167239.
XSS
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF)
CVE-2019-4262
5.3 - Medium
- September 26, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the QRadar system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 160014.
XSPA
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user
CVE-2019-4212
8.8 - High
- July 25, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 159132.
Session Riding
IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way
CVE-2018-2024
8.1 - High
- July 22, 2019
IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 155350.
Incorrect Permission Assignment for Critical Resource
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting
CVE-2018-2021
6.1 - Medium
- July 17, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 155345.
XSS
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting
CVE-2019-4211
5.4 - Medium
- July 17, 2019
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159131.
XSS
IBM QRadar SIEM 7.2 and 7.3 discloses sensitive information to unauthorized users
CVE-2018-2022
5.3 - Medium
- July 17, 2019
IBM QRadar SIEM 7.2 and 7.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 155346.
Information Disclosure
IBM QRadar SIEM 7.2 and 7.3 could allow a local user to obtain sensitive information when exporting content
CVE-2019-4054
3.3 - Low
- July 17, 2019
IBM QRadar SIEM 7.2 and 7.3 could allow a local user to obtain sensitive information when exporting content that could aid an attacker in further attacks against the system. IBM X-Force ID: 156563.
IBM QRadar SIEM 7.2.8 WinCollect could
CVE-2019-4264
5.9 - Medium
- May 29, 2019
IBM QRadar SIEM 7.2.8 WinCollect could allow an attacker to obtain sensitive information by spoofing a trusted entity using man in the middle techniques due to not validating or incorrectly validating a certificate. IBM X-Force ID: 160072.
Improper Certificate Validation
IBM QRadar SIEM 7.3 discloses sensitive information to unauthorized users
CVE-2018-1729
5.3 - Medium
- April 19, 2019
IBM QRadar SIEM 7.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 147708.
Information Disclosure
IBM QRadar SIEM 7.3.2 could
CVE-2019-4210
8.1 - High
- April 08, 2019
IBM QRadar SIEM 7.3.2 could allow a user to bypass authentication exposing certain functionality which could lead to information disclosure or modification of application configuration. IBM X-Force ID: 158986.
IBM QRadar SIEM 7.2 and 7.3 fails to adequately filter user-controlled input data for syntax
CVE-2018-1733
5.3 - Medium
- January 29, 2019
IBM QRadar SIEM 7.2 and 7.3 fails to adequately filter user-controlled input data for syntax that has control-plane implications which could allow an attacker to modify displayed content. IBM X-Force ID: 147811.
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data
CVE-2018-1730
7.1 - High
- December 05, 2018
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147709.
XXE
IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to execute arbitrary commands on the system
CVE-2018-1571
8.8 - High
- September 11, 2018
IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 143121.
IBM QRadar Incident Forensics (IBM QRadar SIEM 7.2, and 7.3) could
CVE-2018-1612
5.8 - Medium
- July 17, 2018
IBM QRadar Incident Forensics (IBM QRadar SIEM 7.2, and 7.3) could allow a remote attacker to bypass authentication and obtain sensitive information. IBM X-Force ID: 144164.
Information Disclosure
IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution
CVE-2018-1418
8.8 - High
- April 26, 2018
IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.
authentification
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Qradar Security Information Event Manager or by IBM? Click the Watch button to subscribe.