Security Bulletin: IBM QRadar Incident Forensics is vulnerable to improper authentication. (CVE-2016-2968)

Summary Improper Authentication in QRadar Incident Forensics Vulnerability Details CVE-ID: CVE-2016-2968 Description: IBM QRadar does not perform or incorrectly performs an authorization check allowing users access to data they don't normally have permissions to see. CVSS Base Score: 6.5 CVSS...

CVE-2016-2968

IBM QRadar Incident Forensics (7.2.x) before 7.2.7 is affected by an improper authentication flaw that allows remote attackers to bypass authentication and gain access to, or modify, sensitive data. The vulnerability is tied to the product’s authentication checks and is exploitable over the netwo...