CVE-2025-33119

CWE-2603 documents3 sources
Severity
6.5MEDIUM
EPSS
0.0%
top 92.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Qradar Security Information AND Event ManagementIBM Qradar Security Information AND Event Manager
Timeline
PublishedNov 12
Latest updateNov 13

Description

IBM QRadar SIEM 7.5 through 7.5.0 UP14 stores user credentials in configuration files in source control which can be read by an authenticated user.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-3xpc-r2rv-grc2: IBM QRadar SIEM 72025-11-13
CVEList
IBM QRadar SIEM Information Disclosure2025-11-12
CVE-2025-33119 (MEDIUM CVSS 6.5) | IBM QRadar SIEM 7.5 through 7.5.0 U | cvebase.io