Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM4C306C936D28C255DC98541C786BBFB0B006EA22F9D37A756B30684CFFA499B0
HistoryDec 03, 2021 - 7:03 p.m.

Security Bulletin: IBM QRadar SIEM is vulnerable to using weaker than expected cryptographic algorithms (CVE-2021-20400)

2021-12-0319:03:07
www.ibm.com
5

0.001 Low

EPSS

Percentile

43.5%

JSON

Summary

IBM QRadar SIEM is vulnerable to using weaker than expected cryptographic algorithms

Vulnerability Details

CVEID:CVE-2021-20400
**DESCRIPTION:**IBM QRadar uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196074 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM QRadar SIEM 7.3.0 to 7.3.3 Fix Pack 9

IBM QRadar SIEM 7.4.0 to 7.4.3 Fix Pack 2

Remediation/Fixes

QRadar / QRM / QVM / QRIF / QNI 7.3.3 Fix Pack 10

QRadar / QRM / QVM / QRIF / QNI 7.4.3 Fix Pack 3

QRadar / QRM / QVM / QRIF / QNI 7.4.3 Fix Pack 4

Note: Version 7.4.3 Fix Pack 3 is only available to QRadar on Cloud users. QRadar 7.4.3 Fix Pack 3 was removed for on-premise QRadar SIEM users.

Workarounds and Mitigations

None

Related

prion 1
cve 1
cvelist 1
cnvd 1
nvd 1
prion
prion
Code injection
2021-12-01 17:15:00
cve
cve
CVE-2021-20400
2021-12-01 17:15:07
cvelist
cvelist
CVE-2021-20400
2021-11-30 00:00:00
cnvd
cnvd
IBM QRadar SIEM Encryption Issue Vulnerability
2021-12-01 00:00:00
nvd
nvd
CVE-2021-20400
2021-12-01 17:15:07

0.001 Low

EPSS

Percentile

43.5%

JSON
Related for 4C306C936D28C255DC98541C786BBFB0B006EA22F9D37A756B30684CFFA499B0
prion1cve1cvelist1cnvd1nvd1