Security Bulletin: IBM QRadar SIEM contains hard-coded credentials (CVE-2016-2880)

Summary An IBM QRadar SIEM user with shell access could obtain the encryption key used to encrypt certain passwords. Vulnerability Details CVEID: CVE-2016-2880 DESCRIPTION: IBM QRadar stores the encryption key used to encrypt the service account password which can be obtained by a local user. CVS...

CVE-2016-2880

IBM QRadar SIEM 7.2.x stores the encryption key used to encrypt the service account password, which can be obtained by a local user. Affected versions include 7.2.0–7.2.7; remediation is to upgrade to QRadar 7.2.8 (and related fixes). The issue enables local access to the encryption key, yielding...