PT-2025-34063 · Ibm · Ibm Soar Qradar Plugin App
Baha Doumi
·
Published
2025-08-20
·
Updated
2025-12-01
·
CVE-2025-36114
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM QRadar SOAR Plugin App versions 1.0.0 through 5.6.0
Description:
The IBM QRadar SOAR Plugin App may allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing “dot dot” sequences (
/../) to view arbitrary files on the system.Recommendations:
IBM QRadar SOAR Plugin App version 5.6.0 and earlier: Update to a newer version to address the directory traversal issue.
IBM QRadar SOAR Plugin App versions 1.0.0 through 5.6.0: Sanitize user-supplied input in URL requests to prevent the injection of “dot dot” sequences (
/../).
IBM QRadar SOAR Plugin App versions 1.0.0 through 5.6.0: Implement strict input validation to filter out potentially malicious characters and patterns in URL requests.Fix
Path traversal
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Soar Qradar Plugin App