What is the severity of CVE-2016-9730?

CVE-2016-9730 is classified as a medium severity vulnerability due to its potential for cross-site request forgery.

How do I fix CVE-2016-9730?

To fix CVE-2016-9730, apply the latest security patch provided by IBM for affected versions of QRadar Incident Forensics.

Which versions of IBM QRadar are affected by CVE-2016-9730?

CVE-2016-9730 affects IBM QRadar Incident Forensics versions 7.2.0 through 7.2.8 and QRadar Security Information and Event Manager versions 7.2.0 through 7.2.8.

What kind of attacks can CVE-2016-9730 enable?

CVE-2016-9730 can enable attackers to perform unauthorized actions as trusted users through cross-site request forgery.

Is there a workaround for CVE-2016-9730?

Currently, the recommended solution for CVE-2016-9730 is to apply the official patch from IBM, as there are no suggested workarounds.

Vulnerability/
CVE-2016-9730

medium

4.3

CWE

352

7/3/2017

6/8/2024

CVE-2016-9730: CSRF

First published: Tue Mar 07 2017(Updated: )

IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference #: 1999549.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Security QRadar Incident Forensics	=7.2.0
IBM Security QRadar Incident Forensics	=7.2.1
IBM Security QRadar Incident Forensics	=7.2.2
IBM Security QRadar Incident Forensics	=7.2.3
IBM Security QRadar Incident Forensics	=7.2.4
IBM Security QRadar Incident Forensics	=7.2.5
IBM Security QRadar Incident Forensics	=7.2.6
IBM Security QRadar Incident Forensics	=7.2.7
IBM Security QRadar Incident Forensics	=7.2.8
IBM QRadar Security Information and Event Manager	=7.2.0
IBM QRadar Security Information and Event Manager	=7.2.1
IBM QRadar Security Information and Event Manager	=7.2.2
IBM QRadar Security Information and Event Manager	=7.2.3
IBM QRadar Security Information and Event Manager	=7.2.4
IBM QRadar Security Information and Event Manager	=7.2.5
IBM QRadar Security Information and Event Manager	=7.2.6
IBM QRadar Security Information and Event Manager	=7.2.7
IBM QRadar Security Information and Event Manager	=7.2.8

Remedy

http://www.ibm.com/support/docview.wss?uid=swg21999549

Never miss a vulnerability like this again

Reference Links

http://www.ibm.com/support/docview.wss?uid=swg21999549

Frequently Asked Questions

What is the severity of CVE-2016-9730?
CVE-2016-9730 is classified as a medium severity vulnerability due to its potential for cross-site request forgery.
How do I fix CVE-2016-9730?
To fix CVE-2016-9730, apply the latest security patch provided by IBM for affected versions of QRadar Incident Forensics.
Which versions of IBM QRadar are affected by CVE-2016-9730?
CVE-2016-9730 affects IBM QRadar Incident Forensics versions 7.2.0 through 7.2.8 and QRadar Security Information and Event Manager versions 7.2.0 through 7.2.8.
What kind of attacks can CVE-2016-9730 enable?
CVE-2016-9730 can enable attackers to perform unauthorized actions as trusted users through cross-site request forgery.
Is there a workaround for CVE-2016-9730?
Currently, the recommended solution for CVE-2016-9730 is to apply the official patch from IBM, as there are no suggested workarounds.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/author
agent/last-modified-date
agent/weakness
agent/remedy
agent/softwarecombine
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm security qradar incident forensics
version/ibm security qradar incident forensics/7.2.0
version/ibm security qradar incident forensics/7.2.1
version/ibm security qradar incident forensics/7.2.2
version/ibm security qradar incident forensics/7.2.3
version/ibm security qradar incident forensics/7.2.4
version/ibm security qradar incident forensics/7.2.5
version/ibm security qradar incident forensics/7.2.6
version/ibm security qradar incident forensics/7.2.7
version/ibm security qradar incident forensics/7.2.8
canonical/ibm qradar security information and event manager
version/ibm qradar security information and event manager/7.2.0
version/ibm qradar security information and event manager/7.2.1
version/ibm qradar security information and event manager/7.2.2
version/ibm qradar security information and event manager/7.2.3
version/ibm qradar security information and event manager/7.2.4
version/ibm qradar security information and event manager/7.2.5
version/ibm qradar security information and event manager/7.2.6
version/ibm qradar security information and event manager/7.2.7
version/ibm qradar security information and event manager/7.2.8