CVE-2018-1732Sensitive Information Exposure in IBM Qradar Advisor With Watson

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
CNA5.3
EPSS
0.2%
top 60.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Qradar Advisor With WatsonIBM Qradar Siem
Timeline
PublishedDec 5
Latest updateMay 13

Description

IBM QRadar Advisor with Watson 1.14.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 147810.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDibm/qradar_advisor_with_watson1.1.01.14.0
CVEListV5ibm/qradar_siem1.14.0

Patches

Patch: www.ibm.comPatch: exchange.xforce.ibmcloud.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-c6w5-gx3w-hp7j: IBM QRadar Advisor with Watson 12022-05-13
CVEList
CVE-2018-1732: IBM QRadar Advisor with Watson 12018-12-05
CVE-2018-1732 — Sensitive Information Exposure in IBM | cvebase