Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-28782

IBM QRadar Suite Software 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-Force ID: 285698.

Published

2024-04-03T12:15:12.747

Last Modified

2025-08-14T18:52:19.970

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-256

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_security	≤ 1.10.11.0	Yes
Application	ibm	qradar_suite	≤ 1.10.18.0	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/285698 Vendor Advisory ([email protected])
https://www.ibm.com/support/pages/node/7145683 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/285698 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/7145683 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)