exploitDog

GHSA-h975-5qpw-9pwh

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

IBM QRadar SIEM 7.2.8 and 7.3 does not validate, or incorrectly validates, a certificate. This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-force ID: 133120.

IBM QRadar SIEM 7.2.8 and 7.3 does not validate, or incorrectly validates, a certificate. This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-force ID: 133120.

Ссылки

EPSS

Процентиль: 24%

0.00079

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2017-1622

CVSS3: 3.7

nvd

около 7 лет назад

IBM QRadar SIEM 7.2.8 and 7.3 does not validate, or incorrectly validates, a certificate. This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-force ID: 133120.

EPSS

Процентиль: 24%

0.00079

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295