IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706.
Weakness
The product does not validate, or incorrectly validates, a certificate.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Qradar_security_information_and_event_manager | Ibm | 7.5.0 (including) | 7.5.0 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_1 (including) | 7.5.0-update_pack_1 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_2 (including) | 7.5.0-update_pack_2 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_3 (including) | 7.5.0-update_pack_3 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_4 (including) | 7.5.0-update_pack_4 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_5 (including) | 7.5.0-update_pack_5 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_6 (including) | 7.5.0-update_pack_6 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_7 (including) | 7.5.0-update_pack_7 (including) |
| Qradar_security_information_and_event_manager | Ibm | 7.5.0-update_pack_8 (including) | 7.5.0-update_pack_8 (including) |