cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-38896,https://securityvulnerability.io/vulnerability/CVE-2021-38896,Cross-Site Scripting Vulnerability in IBM QRadar Advisor,"The IBM QRadar Advisor products ranging from version 2.5 to 2.6.1 are susceptible to a cross-site scripting vulnerability. This issue enables malicious actors to inject arbitrary JavaScript code into the application’s Web UI, compromising the integrity of the trusted session. As a result, sensitive information such as user credentials may be exposed. This vulnerability can significantly impact users and the overall security posture of affected systems.",IBM,Qradar Advisor,6.1,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2021-10-20T19:15:00.000Z,0
CVE-2021-20380,https://securityvulnerability.io/vulnerability/CVE-2021-20380,,IBM QRadar Advisor With Watson App 1.1 through 2.5 as used on IBM QRadar SIEM 7.4 could allow a remote user to obtain sensitive information from HTTP requests that could aid in further attacks against the system. IBM X-Force ID: 195712.,IBM,Qradar Advisor,5.3,MEDIUM,0.0022899999748915434,false,,false,false,false,,,false,false,,2021-06-03T15:15:00.000Z,0
CVE-2020-4408,https://securityvulnerability.io/vulnerability/CVE-2020-4408,,"The IBM QRadar Advisor 1.1 through 2.5.2 with Watson App for IBM QRadar SIEM does not adequately mask all passwords during input, which could be obtained by a physical attacker nearby. IBM X-Force ID: 179536.",IBM,Qradar Advisor,4.2,MEDIUM,0.0005099999834783375,false,,false,false,false,,,false,false,,2020-07-27T14:15:00.000Z,0
CVE-2019-4557,https://securityvulnerability.io/vulnerability/CVE-2019-4557,,IBM Qradar Advisor 1.1 through 2.5 with Watson uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 166206.,IBM,Qradar Advisor,5.9,MEDIUM,0.0010100000072270632,false,,false,false,false,,,false,false,,2020-02-25T14:15:00.000Z,0
CVE-2019-4672,https://securityvulnerability.io/vulnerability/CVE-2019-4672,,IBM QRadar Advisor 1.1 through 2.5 could allow an unauthorized attacker to obtain sensitive information from specially crafted HTTP requests that could aid in further attacks against the system. IBM X-Force ID: 171438.,IBM,Qradar Advisor,5.3,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2020-02-25T14:15:00.000Z,0
CVE-2019-4556,https://securityvulnerability.io/vulnerability/CVE-2019-4556,,IBM QRadar Advisor 1.0.0 through 2.4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 166205.,IBM,Qradar Advisor,4.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2019-11-09T02:15:00.000Z,0