10 matches found
CVE-2016-2872
IBM QRadar SIEM and QRadar Incident Forensics (7.2.x) are affected by CVE-2016-2872 due to a path traversal in parameters that allows remote attackers to read arbitrary files via a crafted URL. Affected products: QRadar SIEM 7.2.x before 7.2.7 and QRadar Incident Forensics 7.2.x before 7.2.7. Roo...
CVE-2015-1993
IBM QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 fails to set the secure flag on session cookies in HTTPS, enabling potential cookie capture via MITM when redirected to HTTP. Impact: partial confidentiality exposure. Remediation: install IBM QRadar 7.2.5 Patch 5 (or newer QRadar/QRM/QVM/Q...
CVE-2015-1999
IBM QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 exposes session IDs in HTTPS URLs, enabling an attacker to read sensitive data from web-server access logs, Referer logs, or browser history. Affected product: IBM QRadar Incident Forensics 7.2.x. Root cause: session IDs stored in URLs. Imp...
CVE-2015-1995
IBM QRadar Incident Forensics 7.2.x (pre-7.2.5 Patch 5) is affected by cross-site scripting via specially crafted URLs, enabling remote attackers to inject arbitrary script/HTML. Root cause: improper input validation in the UI paths; impact includes potential cookie-based credential exposure. Rem...
CVE-2015-1997
IBM QRadar Vulnerability Manager (QRadar QVM) 7.2.x
CVE-2016-2968
IBM QRadar Incident Forensics (7.2.x) before 7.2.7 is affected by an improper authentication flaw that allows remote attackers to bypass authentication and gain access to, or modify, sensitive data. The vulnerability is tied to the product’s authentication checks and is exploitable over the netwo...
CVE-2015-1994
CVE-2015-1994 concerns IBM QRadar Incident Forensics. Affects IBM QRadar Incident Forensics 7.2.x prior to 7.2.5 Patch 5 where the session cookie is missing the HTTPOnly flag, enabling potential cookie exposure via scripting and session hijacking. IBM’s security bulletin corroborates the vulnerab...
CVE-2015-1996
IBM QRadar Incident Forensics 7.2.x vulnerable to cacheable SSL pages that can expose sensitive local-cache data to a local attacker with an unattended workstation. Affected: QRadar Incident Forensics 7.2.x prior to 7.2.5 Patch 5. CVSS base score 2.1 (LOW). Remediation: apply IBM QRadar 7.2.5 Pat...
CVE-2015-1919
IBM QRadar Incident Forensics is affected by a cross-site scripting (XSS) vulnerability (CVE-2015-1919) in versions up to 7.2.4. The issue arises from improper validation of user-supplied input, allowing a remote attacker to craft a URL that, when clicked, executes script in the victim’s browser ...
CVE-2015-1989
IBM QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 is affected by CVE-2015-1989 due to an SQL injection vulnerability. A remote attacker could send specially crafted SQL statements to view, add, modify, or delete data in the back end. The NVD lists a base score of 6.5 (Medium) with network ...