CVE-2022-34352

Name of the Vulnerable Software and Affected Versions IBM QRadar SIEM version 7.5.0

Description The issue is related to the exposure of protected information. It allows a remote attacker to gain unauthorized access to sensitive data. Specifically, a delegated Admin tenant user with a specific domain security profile assigned can see data from other domains.

Recommendations For IBM QRadar SIEM version 7.5.0, consider restricting access to sensitive data and limiting the privileges of delegated Admin tenant users to minimize the risk of exploitation. As a temporary workaround, review and adjust the domain security profiles assigned to users to prevent unauthorized data access.