Lucene search
IBMD452AB6A29E490BAC75A278A75ED5859F0C7398C7B8F7FD3549BEA807107CE17HistoryJul 22, 2019 - 7:00 p.m.
Security Bulletin: IBM QRadar SIEM is vulnerable to CSRF attack (CVE-2019-4212)
2019-07-2219:00:01
www.ibm.com
5
0.001 Low
EPSS
Percentile
26.1%
Summary
IBM QRadar SIEM is vulnerable to CSRF attack
Vulnerability Details
CVEID: CVE-2019-4212
**Description:**IBM QRadar is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
**CVSS Base Score:**4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/159132> for the current score
**CVSS Environmental Score:***Undefined
**CVSS Vector:**CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products and Versions
ยท IBM QRadar 7.3 to 7.3.2 Patch 1
ยท IBM QRadar 7.2 to 7.2.8 Patch 15
Remediation/Fixes
IBM QRadar/QRM/QVM/QRIF/QNI 7.3.2 Patch 2
IBM QRadar/QRM/QVM/QRIF/QNI 7.2.8 Patch 16
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security qradar siem | eq | 7.2 | |
| ibm security qradar siem | eq | 7.3 |
Related
nvd
nvd
CVE-2019-4212
2019-07-25 15:15:11
prion
prion
Cross site request forgery (csrf)
2019-07-25 15:15:00
cvelist
cvelist
CVE-2019-4212
2019-07-22 00:00:00
cve
cve
CVE-2019-4212
2019-07-25 15:15:11
0.001 Low
EPSS
Percentile
26.1%
Related for D452AB6A29E490BAC75A278A75ED5859F0C7398C7B8F7FD3549BEA807107CE17