Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/12/03 6:52 p.m.25 views

Security Bulletin: IBM QRadar SIEM is vulnerable to server side request forgery (SSRF) (CVE-2021-29863)

Summary IBM QRadar SIEM is vulnerable to server side request forgery SSRF Vulnerability Details CVEID: CVE-2021-29863 DESCRIPTION: IBM QRadar SIEM is vulnerable to server side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially...

5.4CVSS4.9AI score0.00541EPSS
Exploits1Affected Software1
Circl
Circl
added 2021/12/01 8:35 p.m.7 views

CVE-2021-29863

creationtimestamp| type| source ---|---|--- 2021-12-01 20:35:33+00:00| seen| https://t.me/cibsecurity/33217...

5.4CVSS5AI score0.00488EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/12/01 5:5 p.m.20 views

CVE-2021-29863

IBM QRadar SIEM 7.3 and 7.4 is vulnerable to server side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. This vulnerability is due to an incomplete fix for...

5.4CVSS4.7AI score0.00488EPSS
Exploits0References2
CVE
CVE
added 2021/12/01 5:5 p.m.53 views

CVE-2021-29863

CVE-2021-29863 affects IBM QRadar SIEM 7.3.x (7.3.0–7.3.3 Fix Pack 9) and 7.4.x (7.4.0–7.4.3 Fix Pack 2). It is a server-side request forgery (SSRF) vulnerability arising from an incomplete fix for CVE-2020-4786. An authenticated attacker could issue unauthorized requests from the QRadar system, ...

5.4CVSS4.4AI score0.00488EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder