Lucene search
K

80 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/29 2:5 p.m.57 views

Security Bulletin: There is a vulnerability in moment.js used by IBM QRadar User Behavior Analytics (CVE-2022-24785)

Summary There is a vulnerability in moment.js used by IBM QRadar User Behavior AnalyticsUBA. This vulnerabiliity is addressed in UBA by upgrading to a version of moment.js that resolves the issue. Vulnerability Details CVEID:CVE-2022-24785 DESCRIPTION: Moment.js could allow a remote attacker to...

7.5CVSS7.4AI score0.05664EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/29 2:1 p.m.128 views

Security Bulletin: Multiple vulnerabilities in Zookeeper affecting IBM QRadar User Behavior Analytics (CVE-2022-2191, CVE-2022-2047, CVE-2022-2048, CVE-2022-24823, CVE-2020-36518)

Summary Multiple vulnerabilities exist in Zookeeper that are used by IBM QRadar User Behavior Analytics UBA. These vulnerabilities are addressed in UBA by upgrading to a version of Zookeeper and packages that are associated with Zookeeper that resolve the vulnerabilities. Vulnerability Details...

7.5CVSS7.4AI score0.0486EPSS
Exploits3Affected Software1
CNVD
CNVD
added 2022/09/29 12:0 a.m.38 views

IBM QRadar User Behavior Analytics has an unspecified vulnerability

IBM QRadar User Behavior Analytics UBA is a user behavior analysis software from International Business Machines IBM, Inc. It can analyze user activity to detect suspicious insiders and determine whether user credentials have been stolen. Security analysts can easily view at-risk users, examine...

6.5CVSS2.6AI score0.00491EPSS
Exploits0References1
NVD
NVD
added 2022/09/28 4:15 p.m.22 views

CVE-2022-36771

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791...

6.5CVSS0.00491EPSS
Exploits0References2
Prion
Prion
added 2022/09/28 4:15 p.m.16 views

Information disclosure

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791...

4CVSS5.9AI score0.00491EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/09/28 3:55 p.m.67 views

CVE-2022-36771

IBM QRadar User Behavior Analytics (QRadar UBA) is affected by CVE-2022-36771. The vulnerability allows an authenticated user to obtain sensitive information to which they should not have access, due to authorization bypass for certain admin-level information. Affected product/version: QRadar UBA...

6.5CVSS6AI score0.00491EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/28 3:55 p.m.11 views

CVE-2022-36771

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791...

4.3CVSS6AI score0.00491EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/28 3:55 p.m.20 views

CVE-2022-36771

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791...

4.3CVSS6.1AI score0.00491EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/09/28 12:0 a.m.7 views

IBM QRadar User Behavior Analytics 安全漏洞

IBM QRadar User Behavior Analytics UBA is a user behavior analysis software from International Business Machines IBM, Inc. It can analyze user activity to detect suspicious insiders and determine whether user credentials have been stolen. Security analysts can easily view at-risk users, examine...

6.5CVSS6.4AI score0.00491EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/28 12:0 a.m.5 views

PT-2022-23614 · Ibm · Ibm Qradar User Behavior Analytics

Name of the Vulnerable Software and Affected Versions: IBM QRadar User Behavior Analytics affected versions not specified Description: The issue allows an authenticated user to obtain sensitive information they should not have access to. Recommendations: At the moment, there is no information abo...

6.5CVSS4.5AI score0.00491EPSS
Exploits0References4
Rapid7 Blog
Rapid7 Blog
added 2022/09/27 2:24 p.m.15 views

How to Deploy a SIEM That Actually Works

I deployed my SIEM in days, not months – here’s how you can too As an IT administrator at a highly digitized manufacturing company, I spent many sleepless nights with no visibility into the activity and security of our environment before deploying a security information and event management SIEM...

6.6AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/08/25 4:36 p.m.14 views

[The Lost Bots] S02E03: Browser-in-Browser Attacks — Don't Get (Cat)-Phished

!\The Lost Bots\ S02E03: Browser-in-Browser Attacks — Don't Get \Cat-Phishedhttps://blog.rapid7.com/content/images/2022/08/The-Lost-Bots-logo-large.png Welcome back to The Lost Bots! In our latest episode, we're talking about phishing attacks — but not your standard run-of-the-mill version...

0.1AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/05 10:43 p.m.166 views

Security Bulletin: Multiple vulnerabilities in Jquery-Ui, highcharts, and datatables are affecting QRadar User Behavior Analytics (CVE-2021-41182, CVE-2021-41183, CVE-2021-41184, CVE-2021-23445, CVE-2021-29489)

Summary There are vulnerabilities in third party packages JQuery-UI, Highcharts, datatables.net affecting User Behavior AnayticsUBA. UBA has been updated to the latest versions of these packages to address these vulnerabilities. Vulnerability Details CVEID:CVE-2021-41182 DESCRIPTION: jQuery...

7.6CVSS6.5AI score0.44515EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/05 10:39 p.m.74 views

Security Bulletin: Apache log4j vulnerabilities in Spark and Zookeeper affect QRadar User Behavior Analytics(CVE-2021-4104)

Summary There is a vulnerability in Apache log4j used by Spark and Zookeeper that is affecting QRadar User Behavior AnalyticsUBA. This has been addressed in both dependencies and UBA has been updated to the patched versions. Vulnerability Details CVEID:CVE-2021-4104 DESCRIPTION: Apache Log4j coul...

7.5CVSS8.7AI score0.81147EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/10 2:2 p.m.40 views

Security Bulletin: Log4j as used in IBM® QRadar User Behavior Analytics add on to IBM® QRadar SIEM is vulnerable to denial of service. (CVE-2021-45105)

Summary Log4j is used by IBM® QRadar User Behavior Analytics add on to IBM® QRadar SIEM to log system events. This bulletin provides a remediation to address the Log4j vulnerability CVE-2021-45105 by upgrading IBM® QRadar User Behavior Analytics add on to IBM® QRadar SIEM Vulnerability Details...

5.9CVSS1.3AI score0.99999EPSS
Exploits20Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/21 1:37 p.m.58 views

Security Bulletin: A vulnerability in Apache Log4j (CVE-2021-45046) impacts IBM® QRadar User Behavior Analytics add on to IBM® QRadar SIEM.

Summary There is a vulnerability in Apache Log4j which is used by IBM® QRadar User Behavior AnalyticsUBA to log system events. Vulnerability Details CVEID: CVE-2021-45046 DESCRIPTION: Apache Log4j could result in remote code execution, caused by an incomplete fix of CVE-2021-44228 in certain...

10CVSS1.2AI score0.99999EPSS
Exploits354Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/17 8:50 p.m.223 views

Security Bulletin: Log4j as used in IBM® QRadar User Behavior Analytics application add on to IBM® QRadar SIEM is vulnerable to remote code execution (RCE) (CVE-2021-44228)

Summary Log4j is used by IBM® QRadar User Behavior Analytics application to log system events. This bulletin provides a remediation for the vulnerability, CVE-2021-44228 by upgrading IBM® QRadar User Behavior Analytics application add on to IBM® QRadar SIEM and thus addressing the exposure to the...

10CVSS1.1AI score0.99999EPSS
Exploits352Affected Software1
NVD
NVD
added 2021/08/02 4:15 p.m.14 views

CVE-2021-29757

IBM QRadar User Behavior Analytics 4.1.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 202168...

8.8CVSS0.00397EPSS
Exploits0References2
Prion
Prion
added 2021/08/02 4:15 p.m.16 views

Cross site request forgery (csrf)

IBM QRadar User Behavior Analytics 4.1.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 202168...

6.8CVSS8.2AI score0.00397EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/08/02 4:0 p.m.43 views

CVE-2021-29757

CVE-2021-29757 affects IBM QRadar User Behavior Analytics (UBA) add-on for QRadar SIEM. A cross-site request forgery (CSRF) vulnerability exists due to improper CSRF checking in some components, enabling attackers to perform malicious, authorized actions from a trusted user’s session. The IBM bul...

8.8CVSS8.4AI score0.00397EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder