CVE-2022-30613Resource Exposure in IBM Qradar Security Information AND Event Manager

CWE-668Resource Exposure3 documents3 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 87.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Qradar Security Information AND Event ManagerIBM Qradar Siem
Timeline
PublishedOct 7

Description

IBM QRadar SIEM 7.4 and 7.5 could disclose sensitive information via a local service to a privileged user. IBM X-Force ID: 227366.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/qradar_siem7.4.0, 7.5.0+1

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
CVEList
CVE-2022-30613: IBM QRadar SIEM 72022-10-07
GHSA
GHSA-h3p7-g5cp-x5qf: IBM QRadar SIEM 72022-10-07
CVE-2022-30613 — Resource Exposure in IBM | cvebase