7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
IBM QRadar SIEM is vulnerable to local privilege escalation if this could be combined with other unknown vulnerabilities then privilege escalation could be performed. IBM QRadar SIEM has addressed the applicable CVE.
CVEID:CVE-2021-39088
**DESCRIPTION:**IBM QRadar SIEM is vulnerable to local privilege escalation if this could be combined with other unknown vulnerabilities then privilege escalation could be performed.
CVSS Base score: 7.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/216111 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM QRadar SIEM | 7.3.0 - 7.3.3 Fix Pack 11 |
IBM QRadar SIEM | 7.4.0 - 7.4.3 Fix Pack 5 |
IBM QRadar SIEM | 7.5.0 - 7.5.0 Update Pack 1 |
IBM encourages customers to update their systems promptly.
Affected Product(s) | Versions | Fix |
---|---|---|
IBM QRadar SIEM | 7.3 | 7.3.3 Fix Pack 12 |
IBM QRadar SIEM | 7.4 | 7.4.3 Fix Pack 6 |
IBM QRadar SIEM | 7.5 | 7.5.0 Update Pack 2 |
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm qradar siem | eq | 7.3 | |
ibm qradar siem | eq | 7.4 | |
ibm qradar siem | eq | 7.5 |
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%