IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 275939.
2024-03-27T13:15:46.300
2025-03-05T21:07:32.663
Analyzed
CVSSv3.1: 4.8 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |
Application | ibm | qradar_security_information_and_event_manager | 7.5.0 | Yes |