Vincent Dragnea

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 139.0.7258.66 **Description** An inappropriate implementation in Extensions in Google Chrome allowed a remote attacker to leak cross-origin data via a crafted HTML page if a user was convinced to perform specific UI gestures. The security severity is rated as Low. **Recommendations** Update Google Chrome to version 139.0.7258.66 or later.

**Name of the Vulnerable Software and Affected Versions** IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0 IBM QRadar Suite Software versions 1.10.12.0 through 1.10.20.0 **Description** The issue exists due to insufficient input validation, allowing a remote attacker to modify dashboard parameters. This could be exploited by an authenticated user. **Recommendations** For IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0, update to a version outside of this range to resolve the issue. For IBM QRadar Suite Software versions 1.10.12.0 through 1.10.20.0, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to dashboard parameters until a patch is available.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar Suite Software versions 1.10.12.0 through 1.10.19.0 IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0 **Description** The issue is related to stored cross-site scripting, allowing users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended functionality and leading to credentials disclosure within a trusted session. This can be achieved by exploiting the lack of protection measures for the web page structure, enabling remote attackers to conduct cross-site scripting attacks by injecting malicious JavaScript code. **Recommendations** For IBM QRadar Suite Software versions 1.10.12.0 through 1.10.19.0, update to a version outside of this range to resolve the issue. For IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the Web UI to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IBM Security Guardium versions 10.5 through 11.3 **Description** The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session. This is due to a cross-site scripting vulnerability. **Recommendations** For versions 10.5 through 11.3, update to a version that includes a fix for this issue to prevent cross-site scripting attacks. As a temporary workaround, consider restricting access to the Web UI to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar Advisor versions 2.5 through 2.6.1 **Description** The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session. This is due to a cross-site scripting vulnerability. **Recommendations** For IBM QRadar Advisor versions 2.5 through 2.6.1, consider restricting access to the Web UI until a fix is available. As a temporary workaround, avoid using the Web UI for sensitive operations to minimize the risk of credentials disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM Security SOAR (affected versions not specified) **Description** The issue arises because IBM Security SOAR performs an operation at a higher privilege level than necessary, leading to the creation of new weaknesses or the amplification of existing ones. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM i2 Analyst's Notebook Premium versions 4.3.0 through 4.3.2 **Description** The issue allows a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. **Recommendations** For versions 4.3.0 through 4.3.2, consider disabling the feature that returns detailed technical error messages in the browser until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM Security SOAR version 41.1 **Description** The issue is related to improper input validation, which could allow an authenticated user to perform actions that they should not have access to. **Recommendations** For version 41.1, update to a version that includes proper input validation to prevent unauthorized access.

Name of the Vulnerable Software and Affected Versions: IBM Cloud Pak for Security (CP4S) versions 1.5.0.0 through 1.5.0.1 Description: The issue allows users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended functionality and leading to credentials disclosure within a trusted session. Recommendations: For versions 1.5.0.0 and 1.5.0.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: IBM Cloud Pak for Security (CP4S) versions 1.5.0.0 through 1.5.0.1 Description: The issue is related to incorrect authorization mechanisms, which could allow a user to obtain sensitive information or perform actions they should not have access to. Recommendations: For versions 1.5.0.0 and 1.5.0.1, update to a version that includes the correct authorization mechanisms to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM Resilient SOAR version 38.0 **Description** The issue is related to insufficient input validation, which may cause a denial of service of the SOAR Platform. **Recommendations** For IBM Resilient SOAR version 38.0, update to a version that includes input validation fixes to prevent denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM Resilient SOAR version 38 **Description** The issue is related to incomplete blacklisting for input validation, which allows attackers to bypass application controls. This results in a direct impact to the system and data integrity. **Recommendations** For IBM Resilient SOAR version 38, consider implementing additional input validation mechanisms to prevent attackers from bypassing application controls. As a temporary workaround, review and enhance the existing blacklisting rules to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar SIEM versions 7.3.0 through 7.3.3 **Description** The issue is due to improper input validation, which could allow an authenticated attacker to perform unauthorized actions. **Recommendations** For IBM QRadar SIEM versions 7.3.0 through 7.3.3, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar versions 7.3.0 through 7.3.2 Patch 4 **Description** The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session. **Recommendations** For IBM QRadar versions 7.3.0 through 7.3.2 Patch 4, update to a version that includes the necessary security patches to prevent cross-site scripting attacks.

**Name of the Vulnerable Software and Affected Versions** IBM Security Guardium Big Data Intelligence version 4.0 **Description** The issue is related to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this to expose sensitive information or consume memory resources. **Recommendations** For IBM Security Guardium Big Data Intelligence version 4.0, consider disabling XML data processing until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation. As a temporary workaround, limit the consumption of memory resources to prevent potential denial-of-service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM Security Guardium Big Data Intelligence version 4.0 (SonarG) **Description** The issue is related to improper restriction of resource requests, allowing an actor to consume more resources than intended. **Recommendations** For IBM Security Guardium Big Data Intelligence version 4.0 (SonarG), at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM versions 7.2 through 7.3 Description: The issue allows a security-critical resource to be read or modified by unintended actors due to improper permission specifications. Recommendations: For IBM QRadar SIEM versions 7.2 through 7.3, update the permission settings for the security-critical resource to prevent unintended access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM versions 7.2 through 7.3 Description: The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session. Recommendations: For versions 7.2 and 7.3, update to a version that includes a fix for this issue to prevent cross-site scripting attacks.

**Name of the Vulnerable Software and Affected Versions** IBM QRadar SIEM versions 7.2 through 7.3 **Description** A local user could obtain sensitive information when exporting content, which could aid an attacker in further attacks against the system. **Recommendations** For versions 7.2 and 7.3, update to a version that includes the fix for this issue to prevent local users from obtaining sensitive information.

**Name of the Vulnerable Software and Affected Versions** IBM Security Information Queue (ISIQ) versions 1.0.0 through 1.0.2 **Description** A remote attacker could hijack the clicking action of a victim by persuading them to visit a malicious Web site, potentially launching further attacks against the victim. **Recommendations** For versions 1.0.0 through 1.0.2, consider restricting access to potentially malicious Web sites to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.