Design/Logic Flaw

2018-10-0513:29:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.1%

JSON

IBM QRadar Incident Forensics 7.2 and 7.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing “dot dot” sequences (/…/) to view arbitrary files on the system. IBM X-Force ID: 144655.

CPENameOperatorVersion
qradar_incident_forensicseq7.3.1 patch4
qradar_incident_forensicseq7.3.1 patch3
qradar_incident_forensicseq7.2.8 patch13
qradar_incident_forensicseq7.2.8 patch8
qradar_incident_forensicseq7.2.8 patch1
qradar_incident_forensicsge7.2.0
qradar_incident_forensicsle7.2.8
qradar_incident_forensicsge7.3.0
qradar_incident_forensicsle7.3.1

Name	Operator	Version
qradar_incident_forensics	eq	7.3.1 patch4
qradar_incident_forensics	eq	7.3.1 patch3
qradar_incident_forensics	eq	7.2.8 patch13
qradar_incident_forensics	eq	7.2.8 patch8
qradar_incident_forensics	eq	7.2.8 patch1
qradar_incident_forensics	ge	7.2.0
qradar_incident_forensics	le	7.2.8
qradar_incident_forensics	ge	7.3.0
qradar_incident_forensics	le	7.3.1