VYPR

QRadar Incident Forensics

by IBM

CVEs (4)

  • CVE-2016-9726HigMar 7, 2017
    risk 0.57cvss 8.8epss 0.02

    IBM QRadar Incident Forensics 7.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM Reference #: 1999542.

  • CVE-2016-2881MedNov 30, 2016
    risk 0.42cvss 6.5epss 0.01

    IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 and QRadar Incident Forensics 7.2 before 7.2.7 allow remote attackers to bypass intended access restrictions via modified request parameters.

  • CVE-2016-9725MedMar 7, 2017
    risk 0.35cvss 5.3epss 0.01

    IBM QRadar Incident Forensics 7.2 allows for Cross-Origin Resource Sharing (CORS), which is a mechanism that allows web sites to request resources from external sites, avoiding the need to duplicate them. IBM Reference #: 1999539.

  • CVE-2016-9730MedMar 7, 2017
    risk 0.28cvss 4.3epss 0.00

    IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference #: 1999549.