Ibm · Ibm Qradar · CVE-2019-4581
**Name of the Vulnerable Software and Affected Versions**
IBM QRadar versions 7.3.0 through 7.3.2 Patch 4
**Description**
The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session.
**Recommendations**
For IBM QRadar versions 7.3.0 through 7.3.2 Patch 4, update to a version that includes the necessary security patches to prevent cross-site scripting attacks.