Lucene search
K

2924 matches found

redhatcve
redhatcve
added 2026/02/19 1:27 a.m.15 views

CVE-2025-36377

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

8.8CVSS5.5AI score0.00185EPSS
Exploits0References1
nessus
nessus
added 2026/02/19 12:0 a.m.15 views

IBM QRadar SIEM 7.5.x < 7.5.0 UP14 Multiple XSS

According to its self-reported version, the IBM QRadar SIEM installation on the remote host is 7.5.x prior to 7.5.0 Update Pack 14. It is, therefore, affected by multiple stored cross-site scripting XSS vulnerabilities: - A vulnerability that allows an authenticated user to embed arbitrary...

6.4CVSS5.6AI score0.00163EPSS
Exploits0References3
osv
osv
added 2026/02/17 9:22 p.m.5 views

CVE-2025-36379

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS5.8AI score0.00143EPSS
Exploits0References1
nvd
nvd
added 2026/02/17 9:22 p.m.5 views

CVE-2025-36379

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS0.00143EPSS
Exploits0References1
osv
osv
added 2026/02/17 9:22 p.m.4 views

CVE-2025-36376

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

8.8CVSS5.8AI score0.00185EPSS
Exploits0References1
nvd
nvd
added 2026/02/17 9:22 p.m.7 views

CVE-2025-36376

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

8.8CVSS0.00185EPSS
Exploits0References1
nvd
nvd
added 2026/02/17 9:22 p.m.7 views

CVE-2025-36377

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

8.8CVSS0.00185EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/02/17 8:37 p.m.3 views

CVE-2025-36376

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.5AI score0.00185EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/02/17 8:37 p.m.3 views

CVE-2025-36376 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.5AI score0.00185EPSS
Exploits0References1
cvelist
cvelist
added 2026/02/17 8:37 p.m.29 views

CVE-2025-36376 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS0.00185EPSS
Exploits0References1
cve
cve
added 2026/02/17 8:37 p.m.12 views

CVE-2025-36376

IBM Security QRadar EDR (QRadar EDR) versions 3.12–3.12.23 do not invalidate sessions after expiration, allowing an authenticated user to impersonate another user. This is documented across multiple sources (IBM RH/CVE page, NVD entry, attackerKB, and CVE record). The issue is addressed by upgrad...

8.8CVSS5.5AI score0.00185EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/02/17 8:32 p.m.30 views

CVE-2025-36377 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS0.00185EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/02/17 8:32 p.m.5 views

CVE-2025-36377 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.5AI score0.00185EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/02/17 8:32 p.m.5 views

CVE-2025-36377

IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.5AI score0.00185EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/02/17 8:32 p.m.14 views

CVE-2025-36377

CVE-2025-36377 affects IBM Security QRadar EDR versions 3.12–3.12.23, where sessions are not invalidated after expiration, allowing an authenticated user to impersonate another user. Connected IBM bulletin confirms remediation: upgrade to QRadar EDR 3.12.24 or later. NVD notes CVSS v3.1 vector wi...

8.8CVSS5.5AI score0.00185EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2026/02/17 8:30 p.m.6 views

CVE-2025-36379 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.5AI score0.00143EPSS
Exploits0References1
cvelist
cvelist
added 2026/02/17 8:30 p.m.27 views

CVE-2025-36379 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS0.00143EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/02/17 8:30 p.m.6 views

CVE-2025-36379

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.5AI score0.00143EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/02/17 8:30 p.m.14 views

CVE-2025-36379

IBM Security QRadar EDR and IBM Security ReaQta are affected by CVE-2025-36379, where weaker-than-expected cryptographic algorithms could allow decryption of sensitive information. Affected versions: QRadar EDR 3.12 through 3.12.23 (and ReaQta 3.12 through 3.12.23). Root cause: use of insufficien...

7.5CVSS5.5AI score0.00143EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2026/02/17 12:0 a.m.8 views

IBM Security QRadar EDR 代码问题漏洞

IBM Security QRadar EDR is a terminal detection and response software developed by the American multinational company IBM. There are code-related vulnerabilities in versions 3.12 to 3.12.23 of IBM Security QRadar EDR. These vulnerabilities stem from the failure to invalidate sessions after they...

8.8CVSS5.8AI score0.00185EPSS
Exploits0References1
Rows per page
Query Builder