7.8
CVE-2025-33120
- EPSS 0.14%
- Veröffentlicht 22.08.2025 14:54:02
- Zuletzt bearbeitet 15.09.2025 19:53:47
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM QRadar SIEM privilege escalation
IBM QRadar SIEM 7.5 through 7.5.0 UP13 could allow an authenticated user to escalate their privileges via a misconfigured cronjob due to execution with unnecessary privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Qradar Incident Forensics Version7.5.0 Update-
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_1
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_10
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_11
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_12
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_13
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_2
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_3
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_4
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_5
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_6
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_7
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_8
Ibm ≫ Qradar Incident Forensics Version7.5.0 Updateupdate_pack_9
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Update-
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_1
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_10
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_11
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_12
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_13
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_2
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_3
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_4
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_5
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_6
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_7
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_8
Ibm ≫ Qradar Security Information And Event Manager Version7.5.0 Updateupdate_pack_9
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.038 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-250 Execution with Unnecessary Privileges
The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://www.ibm.com/support/pages/node/7242869