Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME575B3276E2677A013D6E136DDEC4D58FF45286ABC57A623C68F685EECDEE076
HistoryJun 16, 2018 - 9:50 p.m.

Security Bulletin: IBM QRadar SIEM is vulnerable to a denial of service (CVE-2016-9740)

2018-06-1621:50:45
www.ibm.com
14

EPSS

0.002

Percentile

60.7%

JSON

Summary

IBM QRadar SIEM does not properly restrict the size or amount of resources that are requested or influenced by an actor. This weakness can be used to consume more resources than intended.

Vulnerability Details

CVEID: CVE-2016-9740**
DESCRIPTION:** IBM QRadar could allow a remote attacker to consume all resources on the server due to not properly restricting the size or amount of resources requested by an actor.
CVSS Base Score: 7.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/119790&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

ā€¢ IBM QRadar SIEM 7.2.n

Remediation/Fixes

ā€¢ IBM QRadar/QRM/QVM/QRIF 7.2.8 Patch 4

Workarounds and Mitigations

None

Related

prion 1
nvd 1
cvelist 1
cve 1
ibm 1
prion
prion
Code injection
2017-03-07 17:59:00
nvd
nvd
CVE-2016-9740
2017-03-07 17:59:00
cvelist
cvelist
CVE-2016-9740
2017-03-07 17:00:00
cve
cve
CVE-2016-9740
2017-03-07 17:59:00
ibm
ibm
Release of QRadar 7.2.8 Patch 4 (7.2.8.20170224202650) Updated w/Security Bulletins
2019-05-10 14:29:11

EPSS

0.002

Percentile

60.7%

JSON
Related for E575B3276E2677A013D6E136DDEC4D58FF45286ABC57A623C68F685EECDEE076
prion1nvd1cvelist1cve1ibm1