CVE-2025-36379 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

EUVD-2024-41306

Malicious code in bioql PyPI...

EUVD-2024-54557

Malicious code in bioql PyPI...

EUVD-2024-54114

Malicious code in bioql PyPI...

IBM Security ReaQta EDR Trust Management Issues Vulnerability

IBM Security ReaQta EDR is an Endpoint Detection and Response EDR solution from International Business Machines IBM that detects, investigates and responds to endpoint threats in real time through behavioral analytics and AI technology, providing automated threat hunting and incident response...

CVE-2024-45099

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

CVE-2024-45642

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

CVE-2024-45100

IBM Security ReaQta 3.12 could allow a privileged user to cause a denial of service by sending multiple administration requests due to improper allocation of resources...

CVE-2024-45654

IBM Security ReaQta 3.12 could allow an authenticated user to perform unauthorized actions due to reliance on untrusted inputs...

CVE-2024-45640

IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in further attacks against the system...

CVE-2024-45641

IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to improper SSL certificate validation...

CVE-2024-45641

IBM Security ReaQta EDR 3.12 contains a vulnerability due to improper SSL certificate validation that could allow an attacker to perform unauthorized actions. Affected component is the revalidation/handling of SSL certificates within the product; exploitation is network-based (no user interaction...

CVE-2023-33861 IBM Security ReaQta improper certificate validation

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client...

CVE-2023-33861 IBM Security ReaQta improper certificate validation

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client...

CVE-2023-33861

CVE-2023-33861 affects IBM Security QRadar EDR 3.12. The vulnerability allows an attacker to spoof a trusted entity by interfering with the communication path between the host and client, related to trust management/improper certificate handling. The Red Hat/IBM security entries and the IBM bulle...

PT-2025-22145 · Ibm · Ibm Security Reaqta

Name of the Vulnerable Software and Affected Versions: IBM Security ReaQta EDR version 3.12 Description: The issue allows an attacker to spoof a trusted entity by interfering with the communication path between the host and client. Recommendations: For IBM Security ReaQta EDR version 3.12, at the...

PT-2025-22155 · Ibm · Ibm Security Reaqta

Name of the Vulnerable Software and Affected Versions: IBM Security ReaQta EDR version 3.12 Description: The issue is related to improper SSL certificate validation, which could allow an attacker to perform unauthorized actions. Recommendations: For IBM Security ReaQta EDR version 3.12, update th...

IBM Security ReaQta Code Issue Vulnerability

IBM Security ReaQta is an AI autonomous detection and response platform from International Business Machines IBM. IBM Security ReaQta version 3.12 suffers from a code issue vulnerability that stems from the application's lack of effective validation of uploaded files. An attacker can exploit the...

CVE-2024-45644 IBM Security ReaQta file upload

IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types that can be automatically processed within the product's environment...

CVE-2024-45644

CVE-2024-45644 affects IBM Security ReaQta 3.12 (and IBM QRadar EDR context in IBM bulletin). The issue stems from insufficient validation of uploaded files, enabling a privileged user to upload or transfer files of dangerous types that can be automatically processed within the product environmen...