CVE-2017-1458

Name of the Vulnerable Software and Affected Versions IBM QRadar Network Security version 5.4

Description The issue allows a remote attacker to expose sensitive information or consume memory resources through a XML External Entity Injection (XXE) attack when processing XML data.

Recommendations For IBM QRadar Network Security version 5.4, consider disabling XML data processing until a patch is available to prevent XXE attacks. Restrict access to sensitive information and monitor memory resources to minimize the risk of exploitation.