IBM QRadar SIEM 7.3 and 7.4 uses less secure methods for protecting data in transit between hosts when encrypt host connections is not enabled as well as data at rest. IBM X-Force ID: 192539.
Weakness
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Qradar_security_information_and_event_manager | Ibm | 7.3.0 (including) | 7.3.3 (excluding) |
| Qradar_security_information_and_event_manager | Ibm | 7.4.0 (including) | 7.4.3 (excluding) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3 (including) | 7.3.3 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p1 (including) | 7.3.3-p1 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p2 (including) | 7.3.3-p2 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p3 (including) | 7.3.3-p3 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p4 (including) | 7.3.3-p4 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p5 (including) | 7.3.3-p5 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p6 (including) | 7.3.3-p6 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p7 (including) | 7.3.3-p7 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.4.3 (including) | 7.4.3 (including) |