First published: Mon Jul 13 2020(Updated: )
IBM QRadar SIEM 7.3 and 7.4 could allow a remote privileged user to execute commands.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM QRadar Security Information and Event Manager | >=7.3.0<=7.3.2 | |
IBM QRadar Security Information and Event Manager | =7.3.3 | |
IBM QRadar Security Information and Event Manager | =7.3.3-p1 | |
IBM QRadar Security Information and Event Manager | =7.3.3-p2 | |
IBM QRadar Security Information and Event Manager | =7.3.3-p3 | |
IBM QRadar Security Information and Event Manager | =7.4.0 | |
IBM QRadar Security Information and Event Manager | =7.4.0-p1 | |
IBM QRadar Security Information and Event Manager | =7.4.0-p2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2020-4512.
The severity of CVE-2020-4512 is critical.
IBM QRadar SIEM versions 7.3 and 7.4 are affected by CVE-2020-4512.
A remote privileged user can exploit CVE-2020-4512 to execute commands.
To fix CVE-2020-4512, apply the necessary security patches provided by IBM or upgrade to a non-vulnerable version of IBM QRadar SIEM.