CVE-2024-45643

CWE-327Broken Cryptographic Algorithm3 documents3 sources
Severity
7.5HIGH
EPSS
0.0%
top 85.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security Qradar EDRIBM Qradar EDR
Timeline
PublishedMar 14

Description

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive credential information.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

NVDibm/security_qradar_edr3.123.12.16
CVEListV5ibm/qradar_edr3.12

🔴Vulnerability Details

2
GHSA
GHSA-43ww-866w-7xv9: IBM Security QRadar 32025-03-14
CVEList
IBM QRadar EDR information disclosure2025-03-14
CVE-2024-45643 (HIGH CVSS 7.5) | IBM Security QRadar 3.12 EDR uses w | cvebase.io