Lucene search
+L

1467 matches found

ibm
ibm
added yesterday29 views

Security Bulletin: IBM QRadar SIEM is vulnerable to information diclosures and cross-site scripting

Summary Several potential Cross-Site Scripting and Information Disclosure issues addressed in IBM QRadar SIEM 7.5.0 UP15 Vulnerability Details CVEID:CVE-2025-13995 DESCRIPTION: IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 could allow an attacker with access to one tenant to access hostna...

6.2CVSS6.1AI score0.0018EPSS
Exploits0Affected Software1
nvd
nvd
added yesterday7 views

CVE-2026-56699

Wazuh Manager before 5.0.0-beta3 fails to escape the DataValue.index field when constructing OpenSearch bulk requests, allowing enrolled agents to inject arbitrary NDJSON operations. Attackers can smuggle delete, index, or update operations into bulk requests executed under the manager's admin...

10CVSS
Exploits0References2
cvelist
cvelist
added yesterday25 views

CVE-2026-56699 Wazuh Manager - NDJSON Injection in inventory_sync via Agent-Controlled DataValue.index

Wazuh Manager before 5.0.0-beta3 fails to escape the DataValue.index field when constructing OpenSearch bulk requests, allowing enrolled agents to inject arbitrary NDJSON operations. Attackers can smuggle delete, index, or update operations into bulk requests executed under the manager's admin...

10CVSS
Exploits0References2
nvd
nvd
added 2026/06/25 8:17 p.m.9 views

CVE-2026-57522

Bitwarden Server before 2026.5.0 contains a JSON injection vulnerability in IntegrationTemplateProcessor.ReplaceTokens, which substitutes user-controlled values into event-integration templates without JSON encoding. When an organization has configured an event integration whose template referenc...

5CVSS0.00262EPSS
Exploits1References5
ibm
ibm
added 2026/06/01 4:29 p.m.19 views

Security Bulletin: Investigation Assistant App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. Investigation Assistant App for IBM QRadar SIEM has addressed the applicable CVEs in an update. Vulnerability Details CVEID:CVE-2025-27789 DESCRIPTION: Babel i...

7.5CVSS6.6AI score0.00486EPSS
Exploits1Affected Software1
ibm
ibm
added 2026/06/01 4:7 p.m.12 views

Security Bulletin: The Log Source Management App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. Log Source Management App for IBM QRadar SIEM has addressed the applicable CVEs in an update. Vulnerability Details CVEID:CVE-2025-15599 DESCRIPTION: DOMPurify...

9.8CVSS7.2AI score0.00978EPSS
Exploits2Affected Software1
cvelist
cvelist
added 2026/05/27 1:50 p.m.50 views

CVE-2024-56462 IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating system...

7.2CVSS0.00463EPSS
Exploits0References1
cve
cve
added 2026/05/27 1:50 p.m.23 views

CVE-2024-56462

IBM QRadar SIEM 7.5.0 to 7.5.0 UP15 Interim Fix 002 contains a vulnerability where a privileged user can upload a malicious backup archive, which could be restored to gain access to the underlying operating system. Affected versions: 7.5.0 through UP15 IF002. Root cause and exact remediation are ...

8.8CVSS5.8AI score0.00463EPSS
Exploits0References1Affected Software1
ibm
ibm
added 2026/05/25 1:53 p.m.26 views

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary Multiple components with known vulnerabilities were addressed in IBM QRadar SIEM 7.5.0 UP15 IF03 Vulnerability Details CVEID:CVE-2026-28417 DESCRIPTION: Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw...

9.8CVSS7.4AI score0.01545EPSS
Exploits0Affected Software1
packetstormnews
packetstormnews
added 2026/05/13 12:0 a.m.44 views

Context-Aware Web Attack Detection in Open-Source SIEM Systems Via MITRE ATT&CK-Enriched Behavioral Profiling

Security Information and Event Management SIEM systems aggregate log data from heterogeneous sources to detect coordinated attacks. Traditional rule-based correlation engines struggle to classify multi-step web application attacks because they examine each event without reference to the behaviour...

5.8AI score
Exploits0
githubexploit
githubexploit
added 2026/05/06 9:44 p.m.88 views

cyber-operation-lab

Full-Spectrum Cyber Operation Lab: Red Team Execution & Blue T...

6AI score
Exploits0
euvd
euvd
added 2026/04/21 6:31 p.m.6 views

EUVD-2026-24164

CrowdStrike has released security updates to address a critical unauthenticated path traversal vulnerability CVE-2026-40050 in LogScale. This vulnerability only requires mitigation by customers that host specific versions of LogScale and does not affect Next-Gen SIEM customers. The vulnerability...

9.8CVSS6AI score0.00597EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/21 4:48 p.m.7 views

CVE-2026-40050

CrowdStrike has released security updates to address a critical unauthenticated path traversal vulnerability CVE-2026-40050 in LogScale. This vulnerability only requires mitigation by customers that host specific versions of LogScale and does not affect Next-Gen SIEM customers. The vulnerability...

9.8CVSS6AI score0.00597EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2026/04/21 12:0 a.m.15 views

PT-2026-34018

Name of the Vulnerable Software and Affected Versions LogScale affected versions not specified Description An unauthenticated path traversal issue exists in a specific cluster API endpoint. If this endpoint is exposed, a remote attacker can read arbitrary files from the server filesystem without...

9.8CVSS5.9AI score0.00597EPSS
Exploits0References32
ibm
ibm
added 2026/04/06 5:16 p.m.18 views

Security Bulletin: Investigation Assistant App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. Investigation Assistant App for IBM QRadar SIEM has addressed the applicable CVEs in an update. Vulnerability Details CVEID:CVE-2026-27628 DESCRIPTION: pypdf i...

8.7CVSS7.4AI score0.0077EPSS
Exploits3Affected Software1
ibm
ibm
added 2026/03/31 4:18 p.m.10 views

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary Multiple components with known vulnerabilities were addressed in IBM QRadar SIEM in UP15 IF01 Vulnerability Details CVEID:CVE-2025-38129 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: pagepool: Fix use-after-free in pagepoolrecycleinring syzbot reported a...

7.8CVSS5.9AI score0.00248EPSS
Exploits1Affected Software1
ibm
ibm
added 2026/03/26 7:47 p.m.12 views

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary Multiple components with known vulnerabilities were addressed in IBM QRadar SIEM 7.5.0 UP15 Vulnerability Details CVEID:CVE-2022-50673 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in ext4orphancleanup I caught a issue as follows...

7.8CVSS7.7AI score0.0071EPSS
Exploits0Affected Software1
redhatcve
redhatcve
added 2026/03/26 3:13 p.m.4 views

CVE-2025-36051

IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 stores potentially sensitive information in configuration files that could be read by a local user...

6.2CVSS5.8AI score0.00101EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 3:13 p.m.4 views

CVE-2025-15051

IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...

5.4CVSS5.5AI score0.00136EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 3:13 p.m.5 views

CVE-2025-13995

IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 could allow an attacker with access to one tenant to access hostname data from another tenant's account...

5CVSS5.8AI score0.0018EPSS
Exploits0References1
Rows per page
Query Builder