2 matches found
CVE-2020-4993
CVE-2020-4993 – IBM QRadar SIEM path traversal : QRadar SIEM versions 7.3.0–7.3.3 Patch 7 and 7.4.0–7.4.2 Patch 2 are vulnerable when decompressing or verifying the signature of ZIP files. The root cause is improper handling during ZIP data processing, enabling path traversal. Basescore 4.9 (CVSS...
Security Bulletin: IBM QRadar SIEM is vulnerable to path traversal (CVE-2020-4993)
Summary IBM QRadar SIEM is vulnerable to path traversal attack. Vulnerability Details CVEID: CVE-2020-4993 DESCRIPTION: IBM QRadar SIEM when decompressing or verifying signature of zip files processes data in a way that may be vulnerable to path traversal attacks. CVSS Base score: 4.9 CVSS Tempor...