The product allows web pages containing sensitive information to be cached by a browser. As a result this information will be stored unsafely for an indefinite amount of time on the user’s hard drive. Attackers with local access or malware installed on the user’s computer can access the sensitive data.
CVEID: CVE-2018-1568
**Description:**IBM QRadar allows web pages to be stored locally which can be read by another user on the system.
**CVSS Base Score:**4.00
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/143118> for the current score
**CVSS Environmental Score:***Undefined
**CVSS Vector:**CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
IBM QRadar SIEM 7.2.0 - 7.2.8 Patch 13
IBM QRadar SIEM 7.3.0 - 7.3.1 Patch 4
QRadar / QRM / QVM / QRIF / QNI 7.3.1 Patch 5
QRadar / QRM / QVM / QRIF / QNI 7.2.8 Patch 14
None