CVE-2020-4786 is a vulnerability in IBM Qradar Security Information Event Manager
Published on January 27, 2021
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 189221.
Products Associated with CVE-2020-4786
Want to know whenever a new CVE is published for IBM Qradar Security Information Event Manager? stack.watch will email you.
Affected Versions
IBM QRadar SIEM:- Version 7.3.0 is affected.
- Version 7.4.0 is affected.
- Version 7.3.3 Patch 5 is affected.
- Version 7.4.1 Patch 1 is affected.
- Version 7.4.2.GA is affected.
- Version 7.4.2 Patch 1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.