Name of the Vulnerable Software and Affected Versions:

IBM QRadar SIEM versions 7.5 through 7.5.0 Update Pack 12

Description:

IBM QRadar SIEM is susceptible to stored cross-site scripting. Authenticated users can embed arbitrary JavaScript code within the Web UI, potentially altering functionality and leading to credentials disclosure within a trusted session.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.