Lucene search
China National Vulnerability DatabaseCNVD-2024-09178HistoryFeb 02, 2024 - 12:00 a.m.
IBM SOAR QRadar Plugin App Directory Traversal Vulnerability
2024-02-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
ibm
soar
qradar plugin
directory traversal
vulnerability
attacker
crafted message
arbitrary files
The IBM SOAR QRadar Plugin is a tool from International Business Machines (IBM) used to provide bi-directional messaging between IBM Security QRadar SIEM and QRadar SOAR. The IBM SOAR QRadar Plugin App suffers from a directory traversal vulnerability that can be exploited by an attacker to send a specially crafted message containing a “dot dot” sequence (/… /…) to view arbitrary files on the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm soar qradar plugin app >=1.0, | le | 5.0.3 |
Related
cve
cve
CVE-2023-38019
2024-02-02 04:15:07
cvelist
cvelist
CVE-2023-38019 IBM SOAR QRadar Plugin App directory traversal
2024-02-02 03:34:56
nvd
nvd
CVE-2023-38019
2024-02-02 04:15:07
prion
prion
Design/Logic Flaw
2024-02-02 04:15:00
