Design/Logic Flaw

2023-03-2222:15:00

PRIOn knowledge base

www.prio-n.com

ibm

qradar

siem

privilege escalation

vulnerability

user

admin

capabilities

x-force

nvd

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.1%

JSON

IBM QRadar SIEM 7.4 and 7.5 is vulnerable to privilege escalation, allowing a user with some admin capabilities to gain additional admin capabilities. IBM X-Force ID: 239425.

CPENameOperatorVersion
qradar_security_information_and_event_managerge7.4.0
qradar_security_information_and_event_managerlt7.4.3
qradar_security_information_and_event_managereq7.4.3 fixpack4
qradar_security_information_and_event_managereq7.4.3 fixpack1
qradar_security_information_and_event_managereq7.4.3 fixpack2
qradar_security_information_and_event_managereq7.4.3
qradar_security_information_and_event_managereq7.4.3 fixpack3
qradar_security_information_and_event_managereq7.4.3 fixpack5
qradar_security_information_and_event_managereq7.4.3 fixpack6
qradar_security_information_and_event_managereq7.4.3 fixpack7

Name	Operator	Version
qradar_security_information_and_event_manager	ge	7.4.0
qradar_security_information_and_event_manager	lt	7.4.3
qradar_security_information_and_event_manager	eq	7.4.3 fixpack4
qradar_security_information_and_event_manager	eq	7.4.3 fixpack1
qradar_security_information_and_event_manager	eq	7.4.3 fixpack2
qradar_security_information_and_event_manager	eq	7.4.3
qradar_security_information_and_event_manager	eq	7.4.3 fixpack3
qradar_security_information_and_event_manager	eq	7.4.3 fixpack5
qradar_security_information_and_event_manager	eq	7.4.3 fixpack6
qradar_security_information_and_event_manager	eq	7.4.3 fixpack7