CVE-2022-34351 — Sensitive Information Exposure in IBM Qradar Siem

CWE-200 — Sensitive Information Exposure CWE-312 — Cleartext Storage of Sensitive Info3 documents3 sources

Severity

7.5HIGHNVD

CNA5.9

EPSS

0.1%

top 70.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Qradar Siem IBM Qradar Security Information AND Event Manager

Timeline

PublishedFeb 17

Description

IBM QRadar SIEM 7.4 and 7.5 is vulnerable to information exposure allowing a non-tenant user with a specific domain security profile assigned to see some data from other domains. IBM X-Force ID: 230402.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDibm/qradar_security_information_and_event_manager7.4.0 — 7.4.3+2

▶CVEListV5ibm/qradar_siem7.4.0 — 7.4.3 Fix Pack 7+1

Patches

Patch: www.ibm.com ↗Patch: www.ibm.com ↗

🔴Vulnerability Details

CVEList

IBM QRadar SIEM information disclosure↗2023-02-17

▶

GHSA

GHSA-pc3q-9r5p-7r58: IBM QRadar SIEM 7↗2023-02-17

▶