EUVD-2020-25406

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM QRadar Network Security versions 5.4.0 and 5.5.0 expose sensitive data to unauthorized users.

Reporter	Title	Published	Views	Family All 10
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by Information Exposure PenTest vulnerabilities.(ase id:462657, ase id:462667)	12 Jul 202204:04	–	ibm
BDU FSTEC	The vulnerability of the IBM QRadar Network Security intrusion prevention system, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.	18 Jul 202200:00	–	bdu_fstec
Circl	CVE-2020-4159	12 Jul 202222:25	–	circl
CNNVD	IBM QRadar Network Security 信息泄露漏洞	12 Jul 202200:00	–	cnnvd
CNVD	IBM QRadar Network Security Information Disclosure Vulnerability (CNVD-2022-55637)	22 Jul 202200:00	–	cnvd
CVE	CVE-2020-4159	12 Jul 202217:35	–	cve
Cvelist	CVE-2020-4159	12 Jul 202217:35	–	cvelist
NVD	CVE-2020-4159	12 Jul 202219:15	–	nvd
OSV	CVE-2020-4159	12 Jul 202219:15	–	osv
Prion	Design/Logic Flaw	12 Jul 202219:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "1c5077d4-2d31-3223-a718-b006ba7d41c7",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "51cc4e8b-db49-3d27-88fe-c50ee7f737b1",
        "product": {
          "name": "QRadar Network Security"
        },
        "product_version": "5.4.0"
      },
      {
        "id": "f0d090b2-d8af-3544-b5d1-c7349ec0d1f7",
        "product": {
          "name": "QRadar Network Security"
        },
        "product_version": "5.5.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6602933
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/174339
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.7Medium risk

Vulners AI Score5.7

CVSS 35.3

CVSS 25

CVSS 3.17.5

EPSS0.00209