Lucene search
K

88 matches found

Prion
Prion
added 2021/05/14 5:15 p.m.20 views

Cross site scripting

IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 could disclose sensitive information due an overly permissive cross-domain policy. IBM X-Force ID: 196334...

5CVSS4.9AI score0.00822EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/14 4:15 p.m.18 views

CVE-2021-20429

IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 could disclose sensitive information due an overly permissive cross-domain policy. IBM X-Force ID: 196334...

3.7CVSS5.1AI score0.00822EPSS
Exploits0References2
CVE
CVE
added 2021/05/14 4:15 p.m.38 views

CVE-2021-20429

CVE-2021-20429 affects IBM QRadar User Behavior Analytics add-on for QRadar SIEM (versions 1.0.0–4.1.0). The root cause is an overly permissive cross-domain policy (CORS) that can disclose sensitive information. IBM’s bulletin cites CVSSv3.0 base score 3.7 and recommends upgrading to version 4.1....

5.3CVSS4.9AI score0.00822EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/14 4:15 p.m.22 views

CVE-2021-20393

IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 196001...

5.3CVSS7AI score0.01443EPSS
Exploits0References2
CVE
CVE
added 2021/05/14 4:15 p.m.39 views

CVE-2021-20393

CVE-2021-20393 affects IBM QRadar User Behavior Analytics (UBA) add-on for QRadar SIEM, versions 1.0.0–4.1.0 . The underlying issue is an information disclosure vulnerability where a detailed technical error message returned in the browser can reveal sensitive data, potentially enabling further a...

7.5CVSS7AI score0.01443EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/14 4:15 p.m.18 views

CVE-2021-20392

IBM QRadar User Behavior Analytics 1.0.0 through 4.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS6.1AI score0.00653EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/05/14 4:15 p.m.19 views

CVE-2021-20391

IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 195999...

4CVSS3.5AI score0.00249EPSS
Exploits0References2
CVE
CVE
added 2021/05/14 4:15 p.m.39 views

CVE-2021-20392

CVE-2021-20392 affects IBM QRadar User Behavior Analytics (the add-on to QRadar SIEM) versions 1.0.0–4.0.1. The vulnerability is a cross-site scripting flaw in the Web UI caused by insufficient validation of client data, enabling attackers to inject arbitrary JavaScript into the UI and potentiall...

6.1CVSS5.8AI score0.00653EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/05/14 4:15 p.m.47 views

CVE-2021-20391

CVE-2021-20391 affects IBM QRadar User Behavior Analytics (QRadar UBA) add-on for QRadar SIEM, with versions 1.0.0–4.1.0 vulnerable to an information-disclosure issue where web pages can be stored locally and read by other users on the same system. The IBM Security Bulletin (E2FDAB2D4F6B1859F199A...

4CVSS3.4AI score0.00249EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/13 8:48 p.m.20 views

Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to information exposure (CVE-2021-20393)

Summary User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to information exposure. Vulnerability Details CVEID: CVE-2021-20393 DESCRIPTION: IBM QRadar User Behavior Analytics could allow a remote attacker to obtain sensitive information when a detailed technical error...

7.5CVSS1.3AI score0.01443EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/13 8:46 p.m.24 views

Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to cacheable SSL pages (CVE-2021-20391)

Summary User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to cacheable SSL pages. Vulnerability Details CVEID: CVE-2021-20391 DESCRIPTION: IBM QRadar User Behavior Analytics allows web pages to be stored locally which can be read by another user on the system. CVSS Base...

4CVSS0.8AI score0.00249EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/13 8:46 p.m.24 views

Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to overly permissive CORS policy (CVE-2021-20429)

Summary User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to overly permissive CORS policy. Vulnerability Details CVEID: CVE-2021-20429 DESCRIPTION: IBM QRadar User Behavior Analytics could disclose sensitive information due an overly permissive cross-domain policy. CVSS...

5.3CVSS1.5AI score0.00822EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/05/13 12:0 a.m.8 views

IBM QRadar SIEM 安全漏洞

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. An information...

4CVSS5.7AI score0.00249EPSS
Exploits0References6
Rapid7 Blog
Rapid7 Blog
added 2021/04/07 3:4 p.m.28 views

MDR Vendor Must-Haves, Part 4: Ingestion of Authentication Data Across Local, Domain, and Cloud Sources

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” There isn’t a single threat or breach that doesn’t involve attackers using legitimate credentials to cause harm...

0.7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/03/23 2:14 p.m.44 views

MDR Vendor Must-Haves, Part 1: Deep Observation of Real-Time Endpoint Data

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” Assessing Managed Detection and Response MDR vendors is no easy task. However, evaluating each based on...

0.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/03/18 8:31 p.m.11 views

Top Security Trends Driving Threat Detection and Response Priorities Today

The threat landscape continues to grow at a rapid pace, and organizations need security solutions that can keep up. A modern SaaS SIEM is built in the cloud, provides extended coverage across diverse data sources, and leverages automation to expedite response and containment, making it a great to...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/13 8:37 a.m.5 views

Buyer's Guide for Securing Internal Environment with a Small Cybersecurity Team

Ensuring the cybersecurity of your internal environment when you have a small security team is challenging. If you want to maintain the highest security level with a small team, your strategy has to be 'do more with less,' and with the right technology, you can leverage your team and protect your...

5.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/07/29 4:0 p.m.66 views

The evolution of Microsoft Threat Protection—July update

Modern security teams need to proactively, efficiently, and effectively hunt for threats across multiple attack vectors. To address this need, today we’re excited to give you a glimpse of a new threat hunting capability coming soon to Microsoft Threat Protection. Building off the threat hunting...

Exploits0
Microsoft Secure
Microsoft Secure
added 2019/06/20 4:10 p.m.77 views

The evolution of Microsoft Threat Protection, June update

Since our announcement of Microsoft Threat Protection at Microsoft Ignite, our goal has been to execute and deliver on our promise of helping organizations protect themselves from today’s sophisticated and complex threat landscape. As we close out our fiscal year, we’ve continued progress on...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/05/14 12:0 p.m.63 views

Cynet: An Autonomous Security Platform for Any Size Organization

The Cynet security platform takes a different approach to traditional point security offerings, by providing a consolidated solution to all aspects of breach protection through a single interface. Unlike endpoint security solutions that only focus on particular types of threats targeting the...

Exploits0References21
Rows per page
Query Builder