2 matches found
Security Bulletin: IBM QRadar SIEM is vulnerable to deserialization of untrusted data (CVE-2020-4888)
Summary IBM QRadar SIEM is vulnerable to deserialization of untrusted data Vulnerability Details CVEID: CVE-2020-4888 DESCRIPTION: IBM QRadar SIEM could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java...
CVE-2020-4888
IBM QRadar SIEM is vulnerable to deserialization of untrusted data (CVE-2020-4888). Affected versions are QRadar SIEM 7.4.0–7.4.2 Patch 1 and 7.3.0–7.3.3 Patch 7. The issue arises from insecure Java deserialization of user-supplied content, enabling a remote attacker to execute arbitrary commands...