PT-2014-6149 · Ibm · Ibm Security Qradar Vulnerability Manager+2
Published
2014-11-28
·
Updated
2017-08-29
·
CVE-2014-4831
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security QRadar SIEM and QRadar Risk Manager versions 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1
IBM Security QRadar Vulnerability Manager version 7.2 before 7.2.4 Patch 1
Description
The issue allows remote attackers to hijack sessions via unspecified vectors.
Recommendations
For IBM Security QRadar SIEM and QRadar Risk Manager versions 7.1 before MR2 Patch 9, apply MR2 Patch 9 or later.
For IBM Security QRadar SIEM and QRadar Risk Manager version 7.2 before 7.2.4 Patch 1, apply 7.2.4 Patch 1 or later.
For IBM Security QRadar Vulnerability Manager version 7.2 before 7.2.4 Patch 1, apply 7.2.4 Patch 1 or later.
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Qradar Risk Manager
Ibm Security Qradar Siem
Ibm Security Qradar Vulnerability Manager