Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-47742

IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could disclose sensitive information using man in the middle techniques due to not correctly enforcing all aspects of certificate validation in some circumstances. IBM X-Force ID: 272533.

Published

2024-03-03T13:15:07.090

Last Modified

2024-12-23T18:01:38.420

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.9 (MEDIUM)

Weaknesses

Type: Secondary
CWE-295

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_security	≤ 1.10.11.0	Yes
Application	ibm	qradar_suite	≤ 1.10.18.0	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/272533 Vendor Advisory ([email protected])
https://www.ibm.com/support/pages/node/7129328 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/272533 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/7129328 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)