The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
CVE-ID: CVE-2016-2874 **
Description:IBM QRadar under some configurations allow product authorization rules to be bypassed allowing product users access to information that was not intended for them. **
CVSS Base Score: 3.1**
CVSS Temporal Score:** See https://exchange.xforce.ibmcloud.com/vulnerabilities/112836 for the current score**
CVSS Environmental Score:** Undefined*
CVSS Vector:** CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
ยท IBM QRadar 7.2.n
ยท IBM QRadar 7.1.n
ยท QRadar / QRM / QVM / QRIF 7.2.7
ยท IBM QRadar SIEM 7.1 MR2 Patch 13
None