Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-22355

IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 280781.

Published

2024-03-03T13:15:07.293

Last Modified

2024-12-23T18:01:08.250

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.9 (MEDIUM)

Weaknesses

Type: Secondary
CWE-521

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_security	≤ 1.10.11.0	Yes
Application	ibm	qradar_suite	≤ 1.10.18.0	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/280781 Vendor Advisory ([email protected])
https://www.ibm.com/support/pages/node/7129328 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/280781 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/7129328 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)