2 matches found
Security Bulletin: IBM QRadar SIEM is vulnerable to Arbitrary File Read (CVE-2020-4789)
Summary IBM QRadar SIEM is vulnerable to Arbitrary File Read Vulnerability Details CVEID: CVE-2020-4789 DESCRIPTION: IBM QRadar could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences /../ to view...
CVE-2020-4789
CVE-2020-4789 affects IBM QRadar SIEM across multiple releases (7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5). The issue is a directory traversal vulnerability that lets a remote attacker view arbitrary files by sending specially crafted URLs containing dot-dot se...