IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a local user to gain escalated privileges due to weak file permissions. IBM X-ForceID: 175846.
During installation, installed file permissions are set to allow anyone to modify those files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Qradar_security_information_and_event_manager | Ibm | 7.3.0 (including) | 7.3.3 (excluding) |
Qradar_security_information_and_event_manager | Ibm | 7.3.3 (including) | 7.3.3 (including) |
Qradar_security_information_and_event_manager | Ibm | 7.3.3-p1 (including) | 7.3.3-p1 (including) |
Qradar_security_information_and_event_manager | Ibm | 7.3.3-p2 (including) | 7.3.3-p2 (including) |