Medium Severity

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Share this post:

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools.

CVE(s): CVE-2015-5237, CVE-2019-17195, CVE-2012-6708, CVE-2015-9251, CVE-2020-11022, CVE-2020-11023, CVE-2011-4969, CVE-2017-18640, CVE-2020-15250

Affected product(s) and affected version(s):

IBM QRadar 7.3.0 to 7.3.3 Patch 7

IBM QRadar 7.4.0 to 7.4.2 Patch 2

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6449664
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/105989
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/169514
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138055
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138029
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/181349
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/181350
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/82875
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/174331
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/189677

More stories

Security Bulletin: Streams service for IBM Cloud Pak for Data might be affected by some underlying Java vulnerabilities

Jun 16, 2021 8:01 pm EDT | Medium Severity

Streams service for IBM Cloud Pak for Data might be affected by some underlying Java vulnerabilities ...read more


Security Bulletin: Streams service for IBM Cloud Pak for Data might be affected by some underlying WebSphere Liberty vulnerabilities

Jun 16, 2021 8:00 pm EDT | Medium Severity

Streams service for IBM Cloud Pak for Data might be affected by some underlying WebSphere Liberty vulnerabilities ...read more


Security Bulletin: Streams service for IBM Cloud Pak for Data might be affected by some underlying Python vulnerabilities

Jun 16, 2021 8:00 pm EDT | Medium Severity

Streams service for IBM Cloud Pak for Data might be affected by some underlying Python vulnerabilities ...read more