CVE-2022-22424
20.07.2022, 18:15
IBM QRadar SIEM 7.3, 7.4, and 7.5 could allow a local user to obtain sensitive information from the TLS key file due to incorrect file permissions. IBM X-Force ID: 223597.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | qradar_security_information_and_event_manager | 7.3.0 ≤ 𝑥 < 7.3.3 |
| ibm | qradar_security_information_and_event_manager | 7.4.0 ≤ 𝑥 < 7.4.3 |
| ibm | qradar_security_information_and_event_manager | 7.3.3 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_1 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_10 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_11 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_2 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_3 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_4 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_5 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_6 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_7 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_8 |
| ibm | qradar_security_information_and_event_manager | 7.3.3:fix_pack_9 |
| ibm | qradar_security_information_and_event_manager | 7.4.3 |
| ibm | qradar_security_information_and_event_manager | 7.4.3:fix_pack_1 |
| ibm | qradar_security_information_and_event_manager | 7.4.3:fix_pack_2 |
| ibm | qradar_security_information_and_event_manager | 7.4.3:fix_pack_3 |
| ibm | qradar_security_information_and_event_manager | 7.4.3:fix_pack_4 |
| ibm | qradar_security_information_and_event_manager | 7.5.0 |
| ibm | qradar_security_information_and_event_manager | 7.5.0:update_pack_1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration