CVE-2018-1733 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2018-1733

CWE

https://cwe.mitre.org/data/definitions/.html

IBM QRadar SIEM 7.2 and 7.3 fails to adequately filter user-controlled input data for syntax that has control-plane implications which could allow an attacker to modify displayed content. IBM X-Force ID: 147811.

Affected Software

Name	Vendor	Start Version	End Version
Qradar_security_information_and_event_manager	Ibm	7.2.0 (including)	7.2.8 (including)
Qradar_security_information_and_event_manager	Ibm	7.3.0 (including)	7.3.1 (including)
Qradar_security_information_and_event_manager	Ibm	7.2.8-p13 (including)	7.2.8-p13 (including)
Qradar_security_information_and_event_manager	Ibm	7.3.1-p6 (including)	7.3.1-p6 (including)

References

http://www.securityfocus.com/bid/106793
https://exchange.xforce.ibmcloud.com/vulnerabilities/147811
https://www.ibm.com/support/docview.wss?uid=ibm10794523
http://www.securityfocus.com/bid/106793
https://exchange.xforce.ibmcloud.com/vulnerabilities/147811
https://www.ibm.com/support/docview.wss?uid=ibm10794523