EUVD-2020-26176

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting affecting user credentials.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2020-4929	4 May 202100:00	–	attackerkb
CNNVD	IBM QRadar SIEM 跨站脚本漏洞	4 May 202100:00	–	cnnvd
CNVD	IBM QRadar SIEM Cross-Site Scripting Vulnerability (CNVD-2021-36080)	6 May 202100:00	–	cnvd
CVE	CVE-2020-4929	5 May 202115:45	–	cve
Cvelist	CVE-2020-4929	5 May 202115:45	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to Cross Site Scripting (XSS) (CVE-2020-4929)	4 May 202117:47	–	ibm
NVD	CVE-2020-4929	5 May 202116:15	–	nvd
Prion	Cross site scripting	5 May 202116:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "3e23d46a-457b-3b94-be96-8ad5084a557d",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4e327768-f4f2-3494-b26d-f0d203b34b9e",
        "product": {
          "name": "QRadar SIEM"
        },
        "product_version": "7.3"
      },
      {
        "id": "80a87e1b-b6e7-3ee9-9df6-09fc67bfd798",
        "product": {
          "name": "QRadar SIEM"
        },
        "product_version": "7.4"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6449674
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/191706
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.5Medium risk

Vulners AI Score5.5

CVSS 35.4

CVSS 23.5

CVSS 3.15.4

EPSS0.00187