3 matches found
CVE-2023-50949
IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706...
CVE-2023-50949
CVE-2023-50949 affects IBM QRadar SIEM 7.5 (7.5.0 UP8) via the RabbitMQ protocol used by the SOAR integration, due to improper certificate validation. This could allow an unauthorized user to perform unauthorized actions and, per IBM, enable MITM-like conditions. A remediation is available: upgra...
Security Bulletin: RabbitMQ protocol as used by IBM QRadar SIEM lacks certificate validation (CVE-2023-50949)
Summary The RabbitMQ protocol used by SOAR integration for IBM QRadar SIEM lacks certificate validation and could potentially enable MITM attacks. Vulnerability Details CVEID:CVE-2023-50949 DESCRIPTION: IBM QRadar could allow an unauthorized user to perform unauthorized actions due to improper...