CVE-2025-13995

CWE-12864 documents4 sources
Severity
5.0MEDIUM
EPSS
0.0%
top 86.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM QradarIBM Qradar Security Information AND Event Manager
Timeline
PublishedMar 19

Description

IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 could allow an attacker with access to one tenant to access hostname data from another tenant's account.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:NExploitability: 3.1 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/qradar7.5.07.5.0 Update Pack 14

🔴Vulnerability Details

2
CVEList
IBM QRadar SIEM Information Disclosure2026-03-19
GHSA
GHSA-j87v-9h8f-q7x4: IBM QRadar SIEM 72026-03-19

🕵️Threat Intelligence

1
Wiz
CVE-2025-13995 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2025-13995 (MEDIUM CVSS 5) | IBM QRadar SIEM 7.5.0 through 7.5.0 | cvebase.io