Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-2876

IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 executes unspecified processes at an incorrect privilege level, which makes it easier for remote authenticated users to obtain root access by leveraging a command-injection issue.

Published

2016-11-30T18:59:04.720

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:S/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: SINGLE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

6.8

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-78
    CWE-264
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application ibm qradar_security_information_and_event_manager ≤ 7.1.0 Yes
Application ibm qradar_security_information_and_event_manager 7.2.0 Yes
Application ibm qradar_security_information_and_event_manager 7.2.1 Yes
Application ibm qradar_security_information_and_event_manager 7.2.2 Yes
Application ibm qradar_security_information_and_event_manager 7.2.3 Yes
Application ibm qradar_security_information_and_event_manager 7.2.4 Yes
Application ibm qradar_security_information_and_event_manager 7.2.5 Yes
Application ibm qradar_security_information_and_event_manager 7.2.6 Yes
References