CVE Vulnerabilities

CVE-2024-45638

Plaintext Storage of a Password

Published: Mar 14, 2025 | Modified: Jul 16, 2025
CVSS 3.x
4.4
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

IBM Security QRadar 3.12 EDR stores user credentials in plain text which can be read by a local privileged user.

Weakness

Storing a password in plaintext may result in a system compromise.

Affected Software

Name Vendor Start Version End Version
Security_qradar_edr Ibm 3.12 (including) 3.12.16 (excluding)

Potential Mitigations

References