CVE-2018-1725

low-risk

Published 2020-11-05

IBM QRadar SIEM 7.3 and 7.4 n a multi tenant configuration could be vulnerable to information disclosure. IBM X-Force ID: 147440.

Do I need to act?

-

0.06% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

2

CVSS 2.3/10 Low

LOCAL / LOW complexity

Affected Products (10)

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Qradar Security Information And Event Manager

Affected Vendors

Ibm

References (4)

Third Party Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/147440

Third Party Advisory https://www.ibm.com/support/pages/node/6359945

Third Party Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/147440

Third Party Advisory https://www.ibm.com/support/pages/node/6359945

26

/ 100

low-risk

Severity 10/34 · Low

Exploitability 0/34 · Minimal

Exposure 16/34 · Moderate