IBM QRadar SIEM 7.3 and 7.4 uses less secure methods for protecting data in transit between hosts when encrypt host connections is not enabled as well as data at rest. IBM X-Force ID: 192539.
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Qradar_security_information_and_event_manager | Ibm | 7.3.0 (including) | 7.3.3 (excluding) |
| Qradar_security_information_and_event_manager | Ibm | 7.4.0 (including) | 7.4.3 (excluding) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3 (including) | 7.3.3 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p1 (including) | 7.3.3-p1 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p2 (including) | 7.3.3-p2 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p3 (including) | 7.3.3-p3 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p4 (including) | 7.3.3-p4 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p5 (including) | 7.3.3-p5 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p6 (including) | 7.3.3-p6 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.3.3-p7 (including) | 7.3.3-p7 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.4.3 (including) | 7.4.3 (including) |