CVE-2019-4262
26.09.2019, 15:15
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the QRadar system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 160014.
| Vendor | Product | Version |
|---|---|---|
| ibm | qradar_security_information_and_event_manager | 7.2.0 ≤ 𝑥 < 7.2.8 |
| ibm | qradar_security_information_and_event_manager | 7.3.0 ≤ 𝑥 < 7.3.2 |
| ibm | qradar_security_information_and_event_manager | 7.2.8 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p1 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p10 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p11 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p12 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p13 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p14 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p15 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p16 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p2 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p3 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p4 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p5 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p6 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p7 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p8 |
| ibm | qradar_security_information_and_event_manager | 7.2.8:p9 |
| ibm | qradar_security_information_and_event_manager | 7.3.2 |
| ibm | qradar_security_information_and_event_manager | 7.3.2:p1 |
| ibm | qradar_security_information_and_event_manager | 7.3.2:p2 |
| ibm | qradar_security_information_and_event_manager | 7.3.2:p3 |
𝑥
= Vulnerable software versions