2 matches found
CVE-2018-1733
CVE-2018-1733 affects IBM QRadar SIEM 7.2–7.3. The advisory describes inadequate filtering of user-controlled input data for syntax with control-plane implications, enabling an attacker to modify the content displayed. Affected products: IBM QRadar SIEM versions 7.2 to 7.2.8 Patch 13 and 7.3 to 7...
SECURITY BULLETIN: IBM QRadar SIEM is vulnerable to Content Spoofing (CVE-2018-1733)
Summary The software fails to adequately filter user-controlled input data for syntax that has control-plane implications. Software has certain assumptions about what constitutes data and control respectively. It is the lack of verification of these assumptions for user-controlled input that lead...