Unrated severityNVD Advisory· Published Sep 18, 2014· Updated May 6, 2026

CVE-2014-4824

Description

SQL injection vulnerability in IBM Security QRadar SIEM 7.2 before 7.2.3 Patch 1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

SQL injection in IBM QRadar SIEM 7.2 before 7.2.3 Patch 1 allows authenticated remote attackers to execute arbitrary SQL commands, compromising data integrity, confidentiality, and availability.

Vulnerability

IBM QRadar SIEM versions 7.2 before 7.2.3 Patch 1 contain a SQL injection vulnerability in an unspecified component. The vulnerability allows remote authenticated users to inject arbitrary SQL commands into the back-end database via specially crafted input [1]. The issue is present in the 7.2 MR2 release and earlier builds.

Exploitation

An attacker must have valid authentication credentials for the QRadar SIEM web interface. No local network access or specialized knowledge is required. The attacker sends crafted SQL statements through the application's input vectors, which are not properly sanitized, leading to execution of arbitrary SQL commands on the database server [1].

Impact

Successful exploitation allows the attacker to view, add, modify, or delete information in the back-end database. This compromises the confidentiality, integrity, and availability of the system. The CVSS base score is 6.5 (AV:N/AC:L/Au:S/C:P/I:P/A:P) [1].

Mitigation

IBM released QRadar SIEM 7.2.3 Patch 1 to address this vulnerability. Users should upgrade to version 7.2.3 Patch 1 or later. The security bulletin was published on September 15, 2014 [1]. No workarounds are documented in the available references.

References

Security Bulletin: SQL Injection and Incorrect Handling of SSH Connection vulnerability in QRadar (CVE-2014-4824, CVE-2014-4826)

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

IBM/Qradar Security Information And Event Manager
cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:*:*:*:*:*:*:*
IBM/Security QRadar SIEMllm-fuzzy
Range: <=7.2.3 Patch 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
secunia.com/advisories/61261nvd
exchange.xforce.ibmcloud.com/vulnerabilities/95574nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000