PT-2017-8264 · Ibm · Ibm Qradar
Chris Shepherd
+6
·
Published
2017-03-01
·
Updated
2017-03-04
·
CVE-2016-2879
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM QRadar version 7.2
Description
The issue is related to the use of outdated hashing algorithms for certain passwords, potentially allowing a local user to obtain and decrypt user credentials.
Recommendations
For IBM QRadar version 7.2, update the hashing algorithms to more secure alternatives to prevent the decryption of user credentials.
Fix
Inadequate Encryption Strength
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Qradar