CVE-2024-22337

MEDIUM5.1Info disclosure

Description

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 279977.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected products

ibm / cloud_pak_for_security1.10.0.0 – 1.10.11.0
ibm / QRadar Suite Software1.10.12.0 – 1.10.17.0

References

MISChttps://www.ibm.com/support/pages/node/7118642
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/279977