Unrated severityNVD Advisory· Published Jun 19, 2025· Updated Aug 24, 2025
IBM QRadar SIEM XML external entity injection
CVE-2025-33121
Description
IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.5.0:-:*:*:*:*:*:*Range: 7.5
- Range: >=7.5.0, <=7.5.0 FP12
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7237317mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.