Security QRadar SIEM

7.5.0

SEMANTIC 4 CVEs

7.3.1

SEMANTIC 1 CVE

7.2

MAJOR_MINOR 12 CVEs

7.3

MAJOR_MINOR 14 CVEs

7.4, 7.5

OTHER 1 CVE

CVE-2022-34352

IBM QRadar SIEM 7.5.0 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. IBM X-Force ID: 230403.

MEDIUM Jun 27, 2023

CVE-2023-26274

IBM QRadar SIEM 7.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 248144.

MEDIUM Jun 27, 2023

CVE-2023-26276

IBM QRadar SIEM 7.5.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 248147.

MEDIUM Jun 27, 2023

CVE-2023-26273

IBM QRadar SIEM 7.5.0 could allow an authenticated user to perform unauthorized actions due to hazardous input validation. IBM X-Force ID: 248134.

MEDIUM Jun 27, 2023