Lucene search
HistoryJan 17, 2024 - 5:15 p.m.
CVE-2023-50950
ibm qradar siem
email disclosure
offense rules
ibm x-force id
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
4.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.2%
IBM QRadar SIEM 7.5 could disclose sensitive email information in responses from offense rules. IBM X-Force ID: 275709.
Affected configurations
Node
ibmqradar_security_information_and_event_managerMatch7.5.0-
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_1
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_2
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_3
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_4
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_5
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_6
ORibmqradar_security_information_and_event_managerMatch7.5.0update_pack_7
Related
cve
cve
CVE-2023-50950
2024-01-17 17:15:11
cvelist
cvelist
CVE-2023-50950 IBM QRadar information disclosure
2024-01-17 17:08:30
prion
prion
Code injection
2024-01-17 17:15:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-01-17 10:00:35
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
4.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.2%
Related for NVD:CVE-2023-50950