QRadar on Cloud 7.4.1 Fix Pack 2 Interim Fix

Release Notes

Abstract

A list of resolved issues for the release of QRadar on Cloud 7.4.1 Fix Pack 2 Interim Fix.

Content

The following security issues are resolved in QRadar on Cloud 7.4.1 Fix Pack 2 Interim Fix.

**Issues resolved in QRadar on Cloud 7.4.1 Fix Pack 2 Interim Fix**
Product	Component	Number	Description
QRADAR	SECURITY BULLETIN	CVE-2019-19126	IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
QRADAR	SECURITY BULLETIN	CVE-2018-18074	IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
QRADAR	SECURITY BULLETIN	CVE-2019-2974	IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
QRADAR	SECURITY BULLETIN	CVE-2020-11979	Apache Ant as used by IBM QRadar SIEM is vulnerable to Insecure Temporary Files
QRADAR	SECURITY BULLETIN	CVE-2020-4789	IBM QRadar SIEM is vulnerable to Arbitrary File Read
QRADAR	SECURITY BULLETIN	CVE-2020-4787	IBM QRadar SIEM is vulnerable to Server Side Request Forgery (SSRF)
QRADAR	SECURITY BULLETIN	CVE-2020-4786	IBM QRadar SIEM is vulnerable to Server Side Request Forgery (SSRF)
QRADAR	SECURITY BULLETIN	CVE-2020-5421	Spring Framework as used by IBM QRadar SIEM is vulnerable to improper input validation
QRADAR	SECURITY BULLETIN	CVE-2020-5032	IBM QRadar SIEM is vulnerable to a denial of service attack
QRADAR	SECURITY BULLETIN	CVE-2019-20386	IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
QRADAR	SECURITY BULLETIN	CVE-2020-4888	IBM QRadar SIEM is vulnerable to deserialization of untrusted data

[{"Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSKMKU","label":"IBM QRadar on Cloud"},"ARM Category":[{"code":"a8m0z000000cwszAAA","label":"Install"},{"code":"a8m0z000000cwtdAAA","label":"Upgrade"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)"}]

Tips

QRadar on Cloud 7.4.1 Fix Pack 2 Interim Fix

Release Notes

Abstract

Content

IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Apache Ant as used by IBM QRadar SIEM is vulnerable to Insecure Temporary Files

IBM QRadar SIEM is vulnerable to Arbitrary File Read

IBM QRadar SIEM is vulnerable to Server Side Request Forgery (SSRF)

IBM QRadar SIEM is vulnerable to Server Side Request Forgery (SSRF)

Spring Framework as used by IBM QRadar SIEM is vulnerable to improper input validation

IBM QRadar SIEM is vulnerable to a denial of service attack

IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

IBM QRadar SIEM is vulnerable to deserialization of untrusted data

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?