CVE-2024-49822
- EPSS 0.04%
- Published 18.03.2025 14:19:44
- Last modified 14.08.2025 19:12:54
IBM QRadar Advisor 1.0.0 through 2.6.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attac...
CVE-2021-20380
- EPSS 0.16%
- Published 03.06.2021 15:15:07
- Last modified 21.11.2024 05:46:29
IBM QRadar Advisor With Watson App 1.1 through 2.5 as used on IBM QRadar SIEM 7.4 could allow a remote user to obtain sensitive information from HTTP requests that could aid in further attacks against the system. IBM X-Force ID: 195712.
CVE-2019-4556
- EPSS 0.17%
- Published 09.11.2019 02:15:11
- Last modified 21.11.2024 04:43:43
IBM QRadar Advisor 1.0.0 through 2.4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 166205.
CVE-2018-1732
- EPSS 0.18%
- Published 05.12.2018 17:29:00
- Last modified 21.11.2024 04:00:16
IBM QRadar Advisor with Watson 1.14.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 147810.