Lucene search

K
IbmSecurity Qradar Edr

13 matches found

CVE
CVE
added 2025/01/07 1:15 p.m.49 views

CVE-2024-45100

IBM Security ReaQta 3.12 could allow a privileged user to cause a denial of service by sending multiple administration requests due to improper allocation of resources.

4.9CVSS5AI score0.0009EPSS
CVE
CVE
added 2024/07/10 4:15 p.m.48 views

CVE-2023-35006

IBM Security QRadar EDR 3.12 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

5.4CVSS5.5AI score0.00054EPSS
CVE
CVE
added 2025/01/07 1:15 p.m.46 views

CVE-2024-45640

IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in further attacks against the system.

5.3CVSS5AI score0.00042EPSS
CVE
CVE
added 2025/01/19 3:15 a.m.45 views

CVE-2024-45654

IBM Security ReaQta 3.12 could allow an authenticated user to perform unauthorized actions due to reliance on untrusted inputs.

4.3CVSS4.4AI score0.00054EPSS
CVE
CVE
added 2024/07/10 4:15 p.m.43 views

CVE-2023-33860

IBM Security QRadar EDR 3.12 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the att...

5.3CVSS5AI score0.00057EPSS
CVE
CVE
added 2025/03/14 3:15 p.m.42 views

CVE-2024-45638

IBM Security QRadar 3.12 EDR stores user credentials in plain text which can be read by a local privileged user.

4.4CVSS4.2AI score0.00018EPSS
CVE
CVE
added 2025/03/19 12:15 p.m.41 views

CVE-2024-45644

IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types that can be automatically processed within the product's environment.

4.7CVSS4.6AI score0.00074EPSS
CVE
CVE
added 2024/07/10 4:15 p.m.40 views

CVE-2023-33859

IBM Security QRadar EDR 3.12 could disclose sensitive information due to an observable login response discrepancy. IBM X-Force ID: 257697.

5.3CVSS4.9AI score0.00105EPSS
CVE
CVE
added 2024/11/14 12:15 p.m.40 views

CVE-2024-45642

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.3CVSS5AI score0.00062EPSS
CVE
CVE
added 2024/11/14 12:15 p.m.36 views

CVE-2024-45099

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

4.8CVSS3.9AI score0.00066EPSS
CVE
CVE
added 2025/05/20 4:15 p.m.35 views

CVE-2024-45641

IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to improper SSL certificate validation.

6.5CVSS6.3AI score0.00021EPSS
CVE
CVE
added 2025/03/14 3:15 p.m.33 views

CVE-2024-45643

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive credential information.

7.5CVSS5.6AI score0.00027EPSS
CVE
CVE
added 2025/05/20 3:15 p.m.23 views

CVE-2023-33861

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client.

6.5CVSS6.3AI score0.00036EPSS