CVE-2024-45638

CWE-2563 documents3 sources
Severity
4.4MEDIUM
EPSS
0.0%
top 96.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security Qradar EDRIBM Qradar EDR
Timeline
PublishedMar 14

Description

IBM Security QRadar 3.12 EDR stores user credentials in plain text which can be read by a local privileged user.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.5 | Impact: 3.6

Affected Packages2 packages

NVDibm/security_qradar_edr3.123.12.16
CVEListV5ibm/qradar_edr3.12

🔴Vulnerability Details

2
GHSA
GHSA-r628-467j-rhwp: IBM Security QRadar 32025-03-14
CVEList
IBM QRadar EDR information disclosure2025-03-14
CVE-2024-45638 (MEDIUM CVSS 4.4) | IBM Security QRadar 3.12 EDR stores | cvebase.io