CVE-2022-0331

An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older...

CVE-2023-23570

Client-Side enforcement of Server-Side security for the Command Centre server could be bypassed and lead to invalid configuration with undefined behavior. This issue affects: Gallagher Command Centre 8.90 prior to vEL8.90.1620 MR2, all versions of 8.80 and prior...

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

CVE-2022-0331

An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older...

CVE-2022-0331

The CVE-2022-0331 entry describes an information-disclosure in Sophos Firewall Webadmin, allowing an unauthenticated remote attacker to read the device serial number on v18.5 MR2 and older. Affected component: Webadmin on Sophos Firewall. Root cause: information-disclosure in the Webadmin interfa...

CVE-2018-3929

An exploitable heap corruption exists in the PowerPoint document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 6,1,2018,0312. A crafted PowerPoint PPT document can lead to heap corruption, resulting in remote code execution...

Security Bulletin: IBM QRadar SIEM is vulnerable to clear text passwords. (CVE-2016-2871)

Summary Some passwords in IBM QRadar SIEM were found in configuration files in clear text. Vulnerability Details CVE-ID: CVE-2016-2871 Description: IBM QRadar stores passwords in clear text in configuration files, that could allow a local user to obtain critical sensitive information and gain...

Security Bulletin: IBM QRadar SIEM is vulnerable to cross-site scripting. (CVE-2016-2869)

Summary Cross-Site Scripting was found in various fields in the QRadar UI. Vulnerability Details CVE-ID: CVE-2016-2869 Description: IBM QRadar is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a...

Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects IBM QRadar SIEM, and QRadar Incident Forensics (CVE-2015-7575)

Summary The MD5 “SLOTH” vulnerability on TLS 1.2 affects IBM QRadar SIEM and QRadar Incident Forensics. Vulnerability Details CVEID: CVE-2015-7575 DESCRIPTION: The TLS protocol could allow weaker than expected security caused by a collision attack when using the MD5 hash function for signing a...

Security Bulletin: Open Source Apache Tomcat as used in IBM QRadar SIEM is vulnerable to a security bypass. (CVE-2014-7810)

Summary Open Source Apache Tomcat Security Manager bypass. Vulnerability Details CVE-ID: CVE-2014-7810 Description: Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by the use of expression language. An attacker could exploit this vulnerability to bypass the...

Security Bulletin: IBM QRadar SIEM is vulnerable to shell command injection vulnerability in the admin panel. (CVE-2015-4930, CVE-2015-2016 )

Summary IBM QRadar SIEM is vulnerable to a shell command injection the in admin panel if logged in as an admin user. Vulnerability Details CVE-ID: CVE-2015-4930 Description: IBM QRadar could allow a user authenticated with admin access, to execute commands on the server as root. CVSS Base Score:8...

SECURITY BULLETIN: Webmin as used in IBM QRadar SIEM is vulnerable to Execute code as root. (CVE-2015-2011)

Summary The xmlrpc.cgi Webmin script allows arbitrary command execution and escalation of privileges. Vulnerability Details CVE-ID: CVE-2015-2011 Description: IBM QRadar could allow an authenticated user to execute code as root. CVSS Base Score:8.5 CVSS Temporal Score: See...

Security Bulletin: Apache denial of service vulnerability in QRadar (CVE-2014-0118)

Summary Open source Apache HTTP Server is vulnerable to a denial of service, caused by an error in the moddeflate module as used in IBM QRadar 7.1 MR2 and IBM QRadar 7.2.3 Vulnerability Details CVE-ID: CVE-2014-0118 DESCRIPTION: Apache HTTP Server is vulnerable to a denial of service, caused by a...

Security Bulletin: Multiple Apache Tomcat vulnerabilities in QRadar (CVE-2014-0075, CVE-2014-0095, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119)

Summary Multiple security vulnerabilities have been discovered in the Apache Tomcat component bundled with IBM QRadar versions 7.1.x and 7.2.x. Vulnerability Details CVE-ID: CVE-2014-0075 Description: Apache Tomcat is vulnerable to a denial of service, caused by the improper handling of a malform...

Security Bulletin: IBM QRadar SIEM 7.1 MR2, and 7.2 MR2 are affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0198, CVE-2010-5298

Summary Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Vulnerability Details CVE-ID: CVE-2014-0224 DESCRIPTION: OpenSSL is vulnerable to a man-in-the-middle attack, caused by the use of weak keying material in SSL/TLS clients an...

CVE-2015-4930

IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote authenticated users to execute arbitrary commands with root privileges by leveraging admin access...

CVE-2014-4825

IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 does not properly implement secure connections, which allows man-in-the-middle attackers to discover cleartext credentials via unspecified vectors...

CVE-2014-4827

CVE-2014-4827 is an XSS vulnerability affecting IBM QRadar-related products. The vulnerability arises from improper validation of user-supplied input, allowing a remote attacker to craft a URL that injects arbitrary web script or HTML in QRadar’s web interface. Affected products include IBM QRada...

CVE-2014-4825

Summary of CVE-2014-4825 (IBM QRadar/QRM/QVM) : IBM QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 are reported to handle secure connections improperly, enabling an attacker to obtain cleartext credentials via unspecified vectors. The IBM bulletin lists affected products as IBM QRadar / QRM / QVM, w...