Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMBCF456C13A61B8477345DC07C3A31D7C84486A3E18F0D6EA10794C5D0EF4E45E
HistoryAug 12, 2021 - 9:51 p.m.

Security Bulletin: IBM QRadar SIEM is vulnerable to possible information disclosure in a multi-domain deployment. (CVE-2021-29880)

2021-08-1221:51:19
www.ibm.com
6
ibm
qradar
siem
vulnerability
multi-domain
information disclosure
cve-2021-29880
ibm security

EPSS

0.001

Percentile

23.8%

JSON

Summary

IBM QRadar SIEM is vulnerable to possible information disclosure in a multi-domain deployment.

Vulnerability Details

CVEID:CVE-2021-29880
**DESCRIPTION:**IBM QRadar SIEM when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/206979 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1

Remediation/Fixes

QRadar / QRM / QVM / QRIF / QNI 7.4.3 Fix Pack 2

Workarounds and Mitigations

None

Related

nvd 1
cve 1
cvelist 1
cnvd 1
prion 1
nvd
nvd
CVE-2021-29880
2021-08-13 16:15:07
cve
cve
CVE-2021-29880
2021-08-13 16:15:07
cvelist
cvelist
CVE-2021-29880
2021-08-13 15:50:10
cnvd
cnvd
IBM QRadar SIEM Information Disclosure Vulnerability (CNVD-2021-88197)
2021-08-13 00:00:00
prion
prion
Information disclosure
2021-08-13 16:15:00

EPSS

0.001

Percentile

23.8%

JSON
Related for BCF456C13A61B8477345DC07C3A31D7C84486A3E18F0D6EA10794C5D0EF4E45E
nvd1cve1cvelist1cnvd1prion1