CVE-2020-4151

Опубликовано: 14 апр. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation. IBM X-Force ID: 174201.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/174201
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6189675
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/174201
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6189675
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:qradar_security_information_and_event_manager:*:*:*:*:*:*:*:*

Версия от 7.3.0 (включая) до 7.3.3 (включая)

EPSS

Процентиль: 33%

0.00133

Низкий

6.5 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-q23g-v29w-45vm

github

больше 3 лет назад

IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation. IBM X-Force ID: 174201.

EPSS

Процентиль: 33%

0.00133

Низкий

6.5 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-20