2 matches found
Security Bulletin: IBM QRadar Network Security is affected by potential issues of XML External Entity Injection (CVE-2017-1458)
Summary IBM QRadar Network Security has addressed potential issues of XML External Entity Injection. Vulnerability Details CVEID: CVE-2017-1458 DESCRIPTION: IBM QRadar Network Security is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote attacker could...
CVE-2017-1458
CVE-2017-1458 affects IBM QRadar Network Security 5.4. The issue is an XML External Entity (XXE) vulnerability in XML data processing, potentially exposing sensitive information or causing memory/resource depletion. The IBM bulletin states a fixed version: firmware 5.4.0.2. Remediation options in...