CVE-2020-4157

Name of the Vulnerable Software and Affected Versions IBM QRadar Network Security versions 5.4.0 through 5.5.0

Description The issue is related to the use of hard-coded credentials, such as a password or cryptographic key, in IBM QRadar Network Security. This could allow a remote attacker to gain unauthorized access to protected information. The vulnerability is associated with the system's inbound authentication, outbound communication to external components, or encryption of internal data.

Recommendations For IBM QRadar Network Security versions 5.4.0 through 5.5.0, consider changing the hard-coded credentials to unique, secure credentials to prevent unauthorized access. As a temporary workaround, restrict access to the system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.