Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2024-15726
HistoryMar 29, 2024 - 12:00 a.m.

IBM QRadar SIEM Cross-Site Scripting Vulnerability (CNVD-2024-15726)

2024-03-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
ibm qradar siem
cross-site scripting
vulnerability
international business machines
user activity
security intelligence
data access

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

IBM QRadar SIEM is a solution from International Business Machines (IBM) that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A cross-site scripting vulnerability exists in IBM QRadar SIEM version 7.5, which stems from the application’s lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.

CPENameOperatorVersion
ibm ibm qradar siemeq7.5

Related

nvd 1
cve 1
cvelist 1
ibm 1
nvd
nvd
CVE-2023-50961
2024-03-27 13:15:46
cve
cve
CVE-2023-50961
2024-03-27 13:15:46
cvelist
cvelist
CVE-2023-50961 IBM QRadar cross-site scripting
2024-03-27 12:35:40
ibm
ibm
Security Bulletin: IBM QRadar SIEM is vulnerable to command injection and cross-site scripting (CVE-2023-50961, CVE-2023-50960)
2024-04-11 13:41:58

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CNVD-2024-15726
nvd1cve1cvelist1ibm1