CVE-2021-29776

Name of the Vulnerable Software and Affected Versions IBM QRadar SIEM versions 7.3 through 7.5

Description The issue allows an authenticated user to obtain sensitive information from another user's dashboard by providing the dashboard ID of that user.

Recommendations For versions 7.3 through 7.5, consider restricting access to dashboard IDs to prevent unauthorized users from obtaining sensitive information. As a temporary workaround, consider implementing additional authentication or authorization checks for dashboard access until a patch is available. Restrict access to sensitive information within dashboards to minimize the risk of exploitation.