Lucene search

[email protected]NVD:CVE-2023-47726

HistoryJun 18, 2024 - 2:15 p.m.

CVE-2023-47726

2024-06-1814:15:10

CWE-1287

[email protected]

web.nvd.nist.gov

ibm

qradar suite

cloud pak for security

command execution

vulnerability

input validation

x-force id

272087

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

0.0004 Low

EPSS

Percentile

9.1%

JSON

IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0 through 1.10.21.0 could allow an authenticated user to execute certain arbitrary commands due to improper input validation. IBM X-Force ID: 272087.

References

exchange.xforce.ibmcloud.com/vulnerabilities/272087

https://www.ibm.com/support/pages/node/7157750

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2023-47726

ibm1 cvelist1 cve1