CVE-2016-9727Improper Input Validation in Corporation Qradar Siem

CWE-20Improper Input Validation3 documents3 sources
Severity
8.5HIGHNVD
EPSS
0.4%
top 40.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
IBM Corporation Qradar SiemIBM Qradar Incident ForensicsIBM Qradar Security Information AND Event Manager
Timeline
PublishedMar 7
Latest updateMay 17

Description

IBM QRadar 7.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM Reference #: 1999542.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 1.8 | Impact: 6.0

Affected Packages3 packages

CVEListV5ibm_corporation/qradar_siem7 versions+6

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-r33x-fh3q-fj3f: IBM QRadar 72022-05-17
CVEList
CVE-2016-9727: IBM QRadar 72017-03-07
CVE-2016-9727 — Improper Input Validation | cvebase