2 matches found
Security Bulletin: IBM QRadar SIEM is vulnerable to incorrect permission assignment. (CVE-2017-1624)
Summary The software specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. Vulnerability Details CVEID: CVE-2017-1624 DESCRIPTION: IBM QRadar specifies permissions for a security-critical resource in a way that allow...
CVE-2017-1624
CVE-2017-1624 affects IBM QRadar SIEM. The IBM security bulletin states QRadar versions 7.3.0–7.3.1 Patch 2 specify permissions for a security-critical resource that allow unintended read/modify by unauthorized actors. The bulletin lists a CVSS v3 base score of 4.2 (medium) with network attack ve...