Deserialization of untrusted data

2021-01-2813:15:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.12 Low

EPSS

Percentile

95.4%

JSON

IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 190912.

CPENameOperatorVersion
qradar_security_information_and_event_managereq7.3.1 p4
qradar_security_information_and_event_managereq7.3.1 p3
qradar_security_information_and_event_managereq7.3.1 p6
qradar_security_information_and_event_managereq7.3.1 p5
qradar_security_information_and_event_managereq7.3.1
qradar_security_information_and_event_managereq7.3.2
qradar_security_information_and_event_managereq7.3.0
qradar_security_information_and_event_managereq7.3.2 p1
qradar_security_information_and_event_managereq7.3.2 p2
qradar_security_information_and_event_managereq7.3.2 p3

Name	Operator	Version
qradar_security_information_and_event_manager	eq	7.3.1 p4
qradar_security_information_and_event_manager	eq	7.3.1 p3
qradar_security_information_and_event_manager	eq	7.3.1 p6
qradar_security_information_and_event_manager	eq	7.3.1 p5
qradar_security_information_and_event_manager	eq	7.3.1
qradar_security_information_and_event_manager	eq	7.3.2
qradar_security_information_and_event_manager	eq	7.3.0
qradar_security_information_and_event_manager	eq	7.3.2 p1
qradar_security_information_and_event_manager	eq	7.3.2 p2
qradar_security_information_and_event_manager	eq	7.3.2 p3