cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-28786,https://securityvulnerability.io/vulnerability/CVE-2024-28786,Data Transmission Vulnerability in IBM QRadar SIEM,"IBM QRadar SIEM version 7.5 is susceptible to a vulnerability where sensitive and security-critical data is transmitted in cleartext. This flaw allows unauthorized actors to potentially intercept the data using man in the middle techniques, posing significant security risks for organizations relying on QRadar SIEM for threat detection and response.",IBM,Qradar Siem,6.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,false,,2025-01-28T00:15:00.000Z,0
CVE-2024-51462,https://securityvulnerability.io/vulnerability/CVE-2024-51462,Remote Code Injection Vulnerability in IBM QRadar WinCollect Agent,"The IBM QRadar WinCollect Agent versions 10.0.0 through 10.1.12 are susceptible to a remote code injection vulnerability caused by improper input validation of internal parameters. This could allow an attacker to inject malicious XML data, potentially compromising the integrity of the system and exposing sensitive information. Organizations using affected versions are urged to review their security posture and apply necessary mitigations as outlined by IBM.",IBM,Qradar Wincollect Agent,4,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-17T02:16:00.767Z,0
CVE-2024-45100,https://securityvulnerability.io/vulnerability/CVE-2024-45100,Denial of Service in IBM Security ReaQta Affecting Privileged Users,"IBM Security ReaQta 3.12 is susceptible to a denial of service attack when a privileged user sends multiple administrative requests. This vulnerability arises from the improper allocation of resources within the software, potentially leading to service interruptions and an impaired ability to manage security functions effectively.",IBM,Security Qradar Edr,4.9,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-07T12:22:53.822Z,0
CVE-2024-45640,https://securityvulnerability.io/vulnerability/CVE-2024-45640,Sensitive Information Exposure in IBM Security ReaQta,The IBM Security ReaQta 3.12 has a vulnerability that allows it to return sensitive information within its HTTP response. This exposure can be leveraged by attackers to gain unauthorized access or perform further malicious actions against the system.,IBM,Security Qradar Edr,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-07T12:22:04.843Z,0
CVE-2024-47107,https://securityvulnerability.io/vulnerability/CVE-2024-47107,IBM QRadar SIEM 7.5 vulnerable to Stored Cross-Site Scripting,IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.,IBM,Qradar Siem,6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-12-07T14:49:45.624Z,0
CVE-2024-45099,https://securityvulnerability.io/vulnerability/CVE-2024-45099,ReaQta 3.12 Vulnerable to Cross-Site Scripting,IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.,IBM Security,Security Qradar Edr,4.8,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-11-14T12:15:00.000Z,0
CVE-2024-45642,https://securityvulnerability.io/vulnerability/CVE-2024-45642,ReaQta 3.12 Vulnerable to Cross-Site Scripting,IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.,IBM Security,Security Qradar Edr,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-11-14T12:15:00.000Z,0
CVE-2023-47728,https://securityvulnerability.io/vulnerability/CVE-2023-47728,IBM QRadar Suite Software Vulnerability Could Lead to Sensitive Information Disclosure,IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the request.  This information could be used in further attacks against the system.  IBM X-Force ID:  272201.,IBM,"Qradar Suite Software,Cloud Pak For Security",6.5,MEDIUM,0.0004900000058114529,false,,false,false,false,,,false,false,,2024-08-16T19:12:56.386Z,0
CVE-2024-31905,https://securityvulnerability.io/vulnerability/CVE-2024-31905,IBM QRadar Network Packet Capture Vulnerability,"IBM QRadar Network Packet Capture 7.5 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.  IBM X-Force ID:  289858.",IBM,Qradar Network Packet Capture,5.9,MEDIUM,0.0007399999885819852,false,,false,false,false,,,false,false,,2024-08-15T16:56:56.344Z,0
CVE-2024-25024,https://securityvulnerability.io/vulnerability/CVE-2024-25024,IBM QRadar Suite Software Stores User Credentials in Plain Text,IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores user credentials in plain clear text which can be read by a local user.  IBM X-Force ID:  281430.,IBM,"Qradar Suite Software,Cloud Pak For Security",5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-08-15T02:42:06.312Z,0
CVE-2024-28799,https://securityvulnerability.io/vulnerability/CVE-2024-28799,IBM QRadar Suite Software information disclosure,"A vulnerability affects IBM QRadar Suite Software and IBM Cloud Pak for Security that can lead to the improper display of sensitive data to local privileged users during back-end commands. This issue primarily arises under non-default configurations, potentially resulting in unexpected data disclosure. Organizations utilizing the affected versions should review their configurations and implement appropriate security measures to mitigate the risks associated with this exposure.",IBM,"Qradar Suite Software,Cloud Pak For Security",7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-08-14T16:15:00.000Z,0
CVE-2022-38382,https://securityvulnerability.io/vulnerability/CVE-2022-38382,Unauthorized Access to Sensitive Information Possible After Logout,"A session management issue exists in IBM Cloud Pak for Security (CP4S) and IBM QRadar Suite. This vulnerability allows a user to bypass session invalidation upon logout, potentially enabling unauthorized access to user sessions. As a result, another authenticated user may be able to retrieve sensitive information that should have been secured post-logout. Users of the affected versions should consider applying available patches and enhancing session management practices to safeguard sensitive data.",IBM,"Qradar Suite Software,Cloud Pak For Security",4.1,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2024-08-13T01:01:33.992Z,0
CVE-2023-33860,https://securityvulnerability.io/vulnerability/CVE-2023-33860,QRadar EDR vulnerability exposes authorization tokens and session cookies,"IBM Security QRadar EDR 3.12 has a vulnerability related to the insufficient security of authorization tokens and session cookies. The software fails to set the secure attribute on these tokens, which could lead to potential interception by attackers. By crafting deceptive links or embedding malicious scripts in trusted sites, attackers can lure users into visiting the unsafe URLs. If a user clicks on such a link, their session cookies may be sent over unencrypted channels, allowing attackers to capture sensitive cookie values through network snooping. Organizations using QRadar EDR should take appropriate measures to secure against this vulnerability to protect user sessions and sensitive data.",IBM,Security Qradar Edr,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-07-10T15:28:42.347Z,0
CVE-2023-33859,https://securityvulnerability.io/vulnerability/CVE-2023-33859,IBM QRadar EDR 3.12 Vulnerability Could Leak Sensitive Data,"IBM Security QRadar EDR 3.12 is susceptible to a vulnerability that may result in the disclosure of sensitive information. This issue arises due to discrepancies in the observable login response, which could potentially be leveraged by an attacker to gain unauthorized access to sensitive data. Proper mitigation steps and monitoring are recommended to safeguard against this information leakage.",IBM,Security Qradar Edr,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-07-10T15:26:49.293Z,0
CVE-2023-35006,https://securityvulnerability.io/vulnerability/CVE-2023-35006,IBM QRadar EDR Vulnerable to HTML Injection,"IBM Security QRadar EDR 3.12 is affected by a vulnerability that permits HTML injection. This flaw enables a remote attacker to sneak malicious HTML code into the web interface. When this compromised code is rendered in the browser of a user with access to the hosting site, it executes under the site's security context, potentially leading to unauthorized actions or data exposure. The vulnerability raises significant concerns regarding web application security, as it could facilitate a range of malicious activities if not properly mitigated. For more details on the potential implications and security measures, visit the official IBM advisory and vulnerability database.",IBM,Security Qradar Edr,5.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2024-07-10T15:23:14.151Z,0
CVE-2024-25023,https://securityvulnerability.io/vulnerability/CVE-2024-25023,Log File Vulnerability Could Allow Local User Access,IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 stores potentially sensitive information in log files that could be read by a local user.  IBM X-Force ID:  281429.,IBM,"Qradar Suite Software,Cloud Pak For Security",5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-07-10T01:15:00.000Z,0
CVE-2022-38383,https://securityvulnerability.io/vulnerability/CVE-2022-38383,IBM Cloud Pak for Security Vulnerability Allows Local File Access,"A vulnerability has been identified in IBM Cloud Pak for Security and IBM QRadar Software Suite that allows local web pages to be stored and subsequently read by unauthorized users on the same system. This issue affects specific versions of these products, potentially leading to exposure of sensitive information. Organizations utilizing these platforms are encouraged to review the affected versions and implement recommended mitigations to safeguard against possible unauthorized access.",IBM,"Cloud Pak For Security,Qradar Suite Software",3.3,LOW,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-06-28T19:03:43.269Z,0
CVE-2023-47726,https://securityvulnerability.io/vulnerability/CVE-2023-47726,IBM QRadar Suite Software Vulnerability Could Allow Arbitrary Commands Execution,"The IBM QRadar Suite Software and IBM Cloud Pak for Security are susceptible to a vulnerability that allows authenticated users to execute arbitrary commands. This issue stems from an improper input validation mechanism within the software. When exploited, it can lead to unauthorized command execution, potentially compromising system integrity. Organizations using affected versions of these IBM products should review the advisory and implement necessary updates to mitigate this vulnerability.",IBM,"Qradar Suite Software,Cloud Pak For Security",7.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-06-18T13:40:39.683Z,0
CVE-2024-27269,https://securityvulnerability.io/vulnerability/CVE-2024-27269,Potential Privileged User Configuration Vulnerability Could Disclose Sensitive Information Across Tenants,IBM QRadar SIEM 7.5 could allow a privileged user to configure user management that would disclose unintended sensitive information across tenants.  IBM X-Force ID:  284575.,IBM,Qradar Siem,6.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-14T15:11:00.000Z,0
CVE-2023-47727,https://securityvulnerability.io/vulnerability/CVE-2023-47727,Security Dashboard Parameters Vulnerability,IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.20.0 could allow an authenticated user to modify dashboard parameters due to improper input validation.  IBM X-Force ID:  272089.,IBM,"Cloud Pak For Security,Qradar Suite Software",4.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-02T14:43:57.748Z,0
CVE-2022-38386,https://securityvulnerability.io/vulnerability/CVE-2022-38386,IBM Cloud Pak for Security information disclosure,"A vulnerability exists in IBM Cloud Pak for Security and QRadar Suite where the SameSite attribute is not set for sensitive cookies. This oversight can allow attackers to exploit man-in-the-middle techniques, potentially resulting in unauthorized access to sensitive information. The affected versions include IBM Cloud Pak for Security from 1.10.0.0 to 1.10.11.0 and IBM QRadar Suite for Software from 1.10.12.0 to 1.10.19.0. It is advised to implement protective measures to mitigate risks associated with this vulnerability.",IBM,"Cloud Pak For Security,Qradar Suite For Software",5.9,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-01T12:48:12.167Z,0
CVE-2023-47731,https://securityvulnerability.io/vulnerability/CVE-2023-47731,IBM QRadar Suite Software Vulnerable to Stored Cross-Site Scripting,IBM QRadar Suite Software 1.10.12.0 through 1.10.19.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  272203.,IBM,"Qradar Suite Software,Cloud Pak For Security",5.4,MEDIUM,0.0004299999854993075,false,,true,false,false,,,false,false,,2024-04-23T12:16:11.361Z,0
CVE-2023-50949,https://securityvulnerability.io/vulnerability/CVE-2023-50949,Unauthorized Actions Due to Certificate Validation Flaw,IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation.  IBM X-Force ID:  275706.,IBM,Qradar Siem,5.9,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-04-11T16:54:41.741Z,0
CVE-2023-50961,https://securityvulnerability.io/vulnerability/CVE-2023-50961,IBM QRadar SIEM Vulnerable to Stored Cross-Site Scripting,IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  275939.,IBM,Qradar Siem,4.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-27T12:35:40.175Z,0
CVE-2024-28784,https://securityvulnerability.io/vulnerability/CVE-2024-28784,IBM QRadar SIEM Vulnerable to Cross-Site Scripting,IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  285893.,IBM,Qradar Siem,5.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-27T12:33:45.889Z,0