Lucene search
HistoryNov 28, 2014 - 2:59 a.m.
CVE-2014-4832
ibm
security
qradar
siem
vulnerability manager
cve-2014-4832
network sniffing
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allow remote attackers to obtain sensitive cookie information by sniffing the network during an HTTP session.
Affected configurations
Node
ibmqradar_risk_managerMatch7.1.0
ORibmqradar_risk_managerMatch7.2.0
ORibmqradar_risk_managerMatch7.2.1
ORibmqradar_risk_managerMatch7.2.2
ORibmqradar_risk_managerMatch7.2.3
ORibmqradar_risk_managerMatch7.2.4
Node
ibmqradar_vulnerability_managerMatch7.2.0
ORibmqradar_vulnerability_managerMatch7.2.1
ORibmqradar_vulnerability_managerMatch7.2.2
ORibmqradar_vulnerability_managerMatch7.2.3
ORibmqradar_vulnerability_managerMatch7.2.4
Node
ibmqradar_security_information_and_event_managerMatch7.1.0
ORibmqradar_security_information_and_event_managerMatch7.2.0
ORibmqradar_security_information_and_event_managerMatch7.2.1
ORibmqradar_security_information_and_event_managerMatch7.2.2
ORibmqradar_security_information_and_event_managerMatch7.2.3
ORibmqradar_security_information_and_event_managerMatch7.2.4
Related
prion
prion
Session fixation
2014-11-28 02:59:00
nvd
nvd
CVE-2014-4832
2014-11-28 02:59:03
cvelist
cvelist
CVE-2014-4832
2014-11-28 02:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
Related for CVE-2014-4832