IBM1C63F7B421EEA22F5ED56A48FB3A29AA5B05747D0C16B5A288A2104FB76203A3Security Bulletin: IBM QRadar SIEM Performs Key Exchange Without Entity Authentication on Inter-Host Communications (CVE-2021-29779)
0.001 Low
EPSS
Percentile
41.2%
Summary
IBM QRadar SIEM Performs Key Exchange Without Entity Authentication on Inter-Host Communications
Vulnerability Details
CVEID:CVE-2021-29779
**DESCRIPTION:**IBM QRadar could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in the middle techniques.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/203033 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
Affected Products and Versions
IBM QRadar SIEM 7.3.0 to 7.3.3 Fix Pack 9
IBM QRadar SIEM 7.4.0 to 7.4.3 Fix Pack 2
Remediation/Fixes
QRadar / QRM / QVM / QRIF / QNI 7.3.3 Fix Pack 10
QRadar / QRM / QVM / QRIF / QNI 7.4.3 Fix Pack 3
QRadar / QRM / QVM / QRIF / QNI 7.4.3 Fix Pack 4
Note: Version 7.4.3 Fix Pack 3 is only available to QRadar on Cloud users. QRadar 7.4.3 Fix Pack 3 was removed for on-premise QRadar SIEM users.
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm qradar siem | eq | 7.3 | |
| ibm qradar siem | eq | 7.4 |
Related
0.001 Low
EPSS
Percentile
41.2%