CVE-2021-20401
First published: Tue May 04 2021(Updated: )
IBM QRadar contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM QRadar Security Information and Event Manager | >=7.3.0<7.3.3 | |
| IBM QRadar Security Information and Event Manager | >=7.4.0<7.4.2 | |
| IBM QRadar Security Information and Event Manager | =7.3.3 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_1 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_2 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_3 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_4 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_5 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_6 | |
| IBM QRadar Security Information and Event Manager | =7.3.3-fix_pack_7 | |
| IBM QRadar Security Information and Event Manager | =7.4.2 | |
| IBM QRadar Security Information and Event Manager | =7.4.2-fix_pack_1 | |
| IBM QRadar Security Information and Event Manager | =7.4.2-fix_pack_2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM QRadar vulnerability?
The vulnerability ID is CVE-2021-20401.
What is the severity of CVE-2021-20401 vulnerability?
The severity of CVE-2021-20401 vulnerability is high with a score of 7.8.
What software versions are affected by CVE-2021-20401 vulnerability?
IBM QRadar SIEM 7.3 and 7.4 are affected by CVE-2021-20401 vulnerability.
Are there any fixes available for CVE-2021-20401 vulnerability?
Yes, there are fixes available for CVE-2021-20401 vulnerability.
Where can I find more information about CVE-2021-20401 vulnerability?
You can find more information about CVE-2021-20401 vulnerability on the IBM X-Force ID page and the IBM Support page.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/tags
- agent/weakness
- agent/description
- agent/event
- collector/ibm-support
- source/IBM
- vendor/ibm
- canonical/ibm qradar security information and event manager
- version/ibm qradar security information and event manager/7.3.0
- version/ibm qradar security information and event manager/7.4.0
- version/ibm qradar security information and event manager/7.3.3
- version/ibm qradar security information and event manager/7.3.3-fix_pack_1
- version/ibm qradar security information and event manager/7.3.3-fix_pack_2
- version/ibm qradar security information and event manager/7.3.3-fix_pack_3
- version/ibm qradar security information and event manager/7.3.3-fix_pack_4
- version/ibm qradar security information and event manager/7.3.3-fix_pack_5
- version/ibm qradar security information and event manager/7.3.3-fix_pack_6
- version/ibm qradar security information and event manager/7.3.3-fix_pack_7
- version/ibm qradar security information and event manager/7.4.2
- version/ibm qradar security information and event manager/7.4.2-fix_pack_1
- version/ibm qradar security information and event manager/7.4.2-fix_pack_2