EUVD-2020-26240

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM QRadar SIEM versions 7.3 and 7.4 are vulnerable to path traversal attacks during zip file processing.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2020-4993	4 May 202100:00	–	attackerkb
CNNVD	IBM QRadar SIEM 路径遍历漏洞	4 May 202100:00	–	cnnvd
CNVD	IBM QRadar SIEM Path Traversal Vulnerability	6 May 202100:00	–	cnvd
CVE	CVE-2020-4993	5 May 202115:45	–	cve
Cvelist	CVE-2020-4993	5 May 202115:45	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to path traversal (CVE-2020-4993)	4 May 202117:44	–	ibm
NVD	CVE-2020-4993	5 May 202116:15	–	nvd
OSV	CVE-2020-4993	5 May 202116:15	–	osv
Prion	Path traversal	5 May 202116:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "60b8c190-9277-3b10-a4ba-f2fd5e81ec91",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "baff9888-62b3-30e6-adcc-6d36068cce26",
        "product": {
          "name": "QRadar SIEM"
        },
        "product_version": "7.3"
      },
      {
        "id": "f8b31691-2c50-390d-b51f-d759a89aa8d9",
        "product": {
          "name": "QRadar SIEM"
        },
        "product_version": "7.4"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6449672
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/192905
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.1Medium risk

Vulners AI Score5.1

CVSS 34.9

CVSS 24

CVSS 3.14.9

EPSS0.00284