CVE-2023-33861

CWE-295Improper Certificate Validation3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 60.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security Qradar EDRIBM Security Reaqta EDR
Timeline
PublishedMay 20

Description

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 3.9 | Impact: 2.5

Affected Packages2 packages

CVEListV5ibm/security_reaqta_edr3.12
NVDibm/security_qradar_edr3.123.12.17

🔴Vulnerability Details

2
GHSA
GHSA-wg96-rrcf-j3mh: IBM Security ReaQta EDR 32025-05-20
CVEList
IBM Security ReaQta improper certificate validation2025-05-20
CVE-2023-33861 (MEDIUM CVSS 6.5) | IBM Security ReaQta EDR 3.12 could | cvebase.io