Lucene search
IBM64C5838D4F70BE90676351DFBF2972A003EDB6EFDA8BFDE87803FABF81DDA743HistoryFeb 23, 2022 - 4:54 p.m.
Security Bulletin: IBM Security QRadar Analyst Workflow App for IBM QRadar SIEM is vulnerable to cacheable SSL Pages (CVE-2021-20396)
2022-02-2316:54:05
www.ibm.com
12
0.0004 Low
EPSS
Percentile
12.7%
Summary
IBM Security QRadar Analyst Workflow App for IBM QRadar SIEM is vulnerable to cacheable SSL Pages
Vulnerability Details
CVEID:CVE-2021-20396
**DESCRIPTION:**IBM QRadar allows web pages to be stored locally which can be read by another user on the system.
CVSS Base score: 4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196009 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|
IBM Security QRadar Analyst Workflow
| 1.0 - 1.18.0
Remediation/Fixes
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security qradar siem | eq | 7.3 | |
| ibm security qradar siem | eq | 7.4 |
Related
cvelist
cvelist
CVE-2021-20396
2021-06-10 00:00:00
nvd
nvd
CVE-2021-20396
2021-06-11 15:15:07
prion
prion
Code injection
2021-06-11 15:15:00
cve
cve
CVE-2021-20396
2021-06-11 15:15:07
0.0004 Low
EPSS
Percentile
12.7%
Related for 64C5838D4F70BE90676351DFBF2972A003EDB6EFDA8BFDE87803FABF81DDA743