Server side request forgery (ssrf)

2021-12-0117:15:00

PRIOn knowledge base

www.prio-n.com

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.8%

JSON

IBM QRadar SIEM 7.3 and 7.4 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. This vulnerability is due to an incomplete fix for CVE-2020-4786. IBM X-Force ID: 206087.

CPENameOperatorVersion
qradar_security_information_and_event_managerge7.3.0
qradar_security_information_and_event_managerlt7.3.3
qradar_security_information_and_event_managerge7.4.0
qradar_security_information_and_event_managerlt7.4.3
qradar_security_information_and_event_managereq7.3.3 fixpack9
qradar_security_information_and_event_managereq7.3.3 fixpack8
qradar_security_information_and_event_managereq7.3.3
qradar_security_information_and_event_managereq7.3.3 fixpack1
qradar_security_information_and_event_managereq7.3.3 fixpack2
qradar_security_information_and_event_managereq7.3.3 fixpack3

Name	Operator	Version
qradar_security_information_and_event_manager	ge	7.3.0
qradar_security_information_and_event_manager	lt	7.3.3
qradar_security_information_and_event_manager	ge	7.4.0
qradar_security_information_and_event_manager	lt	7.4.3
qradar_security_information_and_event_manager	eq	7.3.3 fixpack9
qradar_security_information_and_event_manager	eq	7.3.3 fixpack8
qradar_security_information_and_event_manager	eq	7.3.3
qradar_security_information_and_event_manager	eq	7.3.3 fixpack1
qradar_security_information_and_event_manager	eq	7.3.3 fixpack2
qradar_security_information_and_event_manager	eq	7.3.3 fixpack3