IBM QRadar SIEM Information Disclosure Vulnerability (CNVD-2021-88197)

IBM QRadar SIEM is a suite of solutions from IBM USA that leverages security intelligence to protect assets and information from advanced threats. The solution provides capabilities such as oversight of the entire scope of the IT architecture and generation of detailed reports on data access and user activity.IBM QRadar SIEM has an information leakage vulnerability in versions 7.4.3 GA and 7.4.3 Fix Pack 1. The vulnerability stems from the fact that IBM QRadar SIEM, when using domains or multi-tenancy, could be vulnerable to information leakage by routing SIEM data to the wrong domain and become vulnerable to inter-tenant information leakage. No detailed vulnerability details are currently available.