Lucene search
HistoryNov 28, 2014 - 2:59 a.m.
CVE-2014-4832
ibm
security
qradar
siem
vulnerability manager
cve-2014-4832
network sniffing
6.2 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
68.9%
IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allow remote attackers to obtain sensitive cookie information by sniffing the network during an HTTP session.
Affected configurations
Node
ibmqradar_risk_managerMatch7.1.0
ORibmqradar_risk_managerMatch7.2.0
ORibmqradar_risk_managerMatch7.2.1
ORibmqradar_risk_managerMatch7.2.2
ORibmqradar_risk_managerMatch7.2.3
ORibmqradar_risk_managerMatch7.2.4
Node
ibmqradar_vulnerability_managerMatch7.2.0
ORibmqradar_vulnerability_managerMatch7.2.1
ORibmqradar_vulnerability_managerMatch7.2.2
ORibmqradar_vulnerability_managerMatch7.2.3
ORibmqradar_vulnerability_managerMatch7.2.4
Node
ibmqradar_security_information_and_event_managerMatch7.1.0
ORibmqradar_security_information_and_event_managerMatch7.2.0
ORibmqradar_security_information_and_event_managerMatch7.2.1
ORibmqradar_security_information_and_event_managerMatch7.2.2
ORibmqradar_security_information_and_event_managerMatch7.2.3
ORibmqradar_security_information_and_event_managerMatch7.2.4
Related
nvd
nvd
CVE-2014-4832
2014-11-28 02:59:03
cvelist
cvelist
CVE-2014-4832
2014-11-28 02:00:00
prion
prion
Session fixation
2014-11-28 02:59:00
6.2 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
68.9%
Related for CVE-2014-4832