Lucene search
HistoryMar 22, 2023 - 10:15 p.m.
CVE-2022-43863
ibm
qradar
siem
privilege escalation
user
admin
x-force
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.1%
IBM QRadar SIEM 7.4 and 7.5 is vulnerable to privilege escalation, allowing a user with some admin capabilities to gain additional admin capabilities. IBM X-Force ID: 239425.
Affected configurations
Node
ibmqradar_security_information_and_event_managerRange7.4.0–7.4.3
ORibmqradar_security_information_and_event_managerMatch7.4.3-
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_1
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_2
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_3
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_4
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_5
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_6
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_7
ORibmqradar_security_information_and_event_managerMatch7.4.3fix_pack_8
ORibmqradar_security_information_and_event_managerMatch7.5.0-
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_1
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_2
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_3
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_4
linuxlinux_kernelMatch-
Related
prion
prion
Design/Logic Flaw
2023-03-22 22:15:00
cve
cve
CVE-2022-43863
2023-03-22 22:15:12
cvelist
cvelist
CVE-2022-43863 IBM QRadar SIEM privilege escalation
2023-03-22 21:25:01
ibm
ibm
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.1%
Related for NVD:CVE-2022-43863