PT-2016-5265 · Ibm · Ibm Qradar Siem+1
Chris Shepherd
+6
·
Published
2016-11-30
·
Updated
2016-12-01
·
CVE-2016-2881
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
IBM QRadar SIEM versions 7.1 before MR2 Patch 13
IBM QRadar SIEM versions 7.2 before 7.2.7
QRadar Incident Forensics versions 7.2 before 7.2.7
Description
The issue allows remote attackers to bypass intended access restrictions via modified request parameters.
Recommendations
For IBM QRadar SIEM version 7.1, apply MR2 Patch 13 or later to resolve the issue.
For IBM QRadar SIEM version 7.2, update to version 7.2.7 or later to resolve the issue.
For QRadar Incident Forensics version 7.2, update to version 7.2.7 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Qradar Siem
Ibm Qradar Incident Forensics