Description

IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 281429.

Related CPE's

a

ibm

cloud_pak_for_security

Vulnerable

a

ibm

qradar_suite

Vulnerable

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/281429

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/7159768

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-312

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2024-07-10T01:15:09.633

3 months ago

Last modified

2024-09-21T10:15:04.760

1 month ago