Lucene search

K
cve[email protected]CVE-2014-4832
HistoryNov 28, 2014 - 2:59 a.m.

CVE-2014-4832

2014-11-2802:59:03
CWE-200
web.nvd.nist.gov
19
ibm
security
qradar
siem
vulnerability manager
cve-2014-4832
network sniffing

6.2 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.9%

IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allow remote attackers to obtain sensitive cookie information by sniffing the network during an HTTP session.

Affected configurations

NVD
Node
ibmqradar_risk_managerMatch7.1.0
OR
ibmqradar_risk_managerMatch7.2.0
OR
ibmqradar_risk_managerMatch7.2.1
OR
ibmqradar_risk_managerMatch7.2.2
OR
ibmqradar_risk_managerMatch7.2.3
OR
ibmqradar_risk_managerMatch7.2.4
Node
ibmqradar_vulnerability_managerMatch7.2.0
OR
ibmqradar_vulnerability_managerMatch7.2.1
OR
ibmqradar_vulnerability_managerMatch7.2.2
OR
ibmqradar_vulnerability_managerMatch7.2.3
OR
ibmqradar_vulnerability_managerMatch7.2.4
Node
ibmqradar_security_information_and_event_managerMatch7.1.0
OR
ibmqradar_security_information_and_event_managerMatch7.2.0
OR
ibmqradar_security_information_and_event_managerMatch7.2.1
OR
ibmqradar_security_information_and_event_managerMatch7.2.2
OR
ibmqradar_security_information_and_event_managerMatch7.2.3
OR
ibmqradar_security_information_and_event_managerMatch7.2.4

6.2 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.9%

Related for CVE-2014-4832