Fahimhusain Raydurg

**Name of the Vulnerable Software and Affected Versions** IBM QRadar SIEM versions 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 **Description** IBM QRadar SIEM is susceptible to stored cross-site scripting. An authenticated user can inject arbitrary JavaScript code into the Web UI, potentially modifying the intended functionality and leading to credentials disclosure within a trusted session. The vulnerability allows for the embedding of malicious scripts that can compromise the integrity of the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar SIEM versions 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 **Description** IBM QRadar SIEM versions 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 is susceptible to stored cross-site scripting. An authenticated user can inject arbitrary JavaScript code into the Web UI, potentially modifying the intended functionality and leading to credentials disclosure within a trusted session. The vulnerability allows for the embedding of malicious scripts that can be executed when other users access the affected interface. **Recommendations** Update IBM QRadar SIEM to a version beyond 7.5.0 Update Pack 13 Independent Fix 02.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar SIEM versions 7.5 through 7.5.0 UP12 IF02 **Description** IBM QRadar SIEM is susceptible to a stored cross-site scripting issue. Authenticated users can embed arbitrary JavaScript code within the Web UI, potentially altering functionality and leading to credentials disclosure within a trusted session. **Recommendations** IBM QRadar SIEM version 7.5 through 7.5.0 UP12 IF02: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** RabbitMQ versions prior to 3.8.18 **Description** The issue arises from the `rabbitmq federation management` plugin in RabbitMQ, where a federation link's consumer tag is rendered without proper sanitization of `<script>` tags in the management UI. This potentially allows for JavaScript code execution in the context of the page, but the user must be signed in and have elevated permissions for this to occur. **Recommendations** For versions prior to 3.8.18, update to RabbitMQ 3.8.18 to patch the vulnerability. As a temporary workaround, consider disabling the `rabbitmq federation management` plugin and use CLI tools instead.