IBM Security Bulletin: IBM QRadar SIEM is vulnerable to incorrect permission assignment. (CVE-2016-9722)

The software specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVE(s): CVE-2016-9722

Affected product(s) and affected version(s):

· IBM QRadar 7.3 to 7.3.0 Patch 6

· IBM QRadar 7.2 to 7.2.8 Patch 10

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2D0U2It
X-Force Database: http://ift.tt/2Cz4aH6

The post IBM Security Bulletin: IBM QRadar SIEM is vulnerable to incorrect permission assignment. (CVE-2016-9722) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2CwekbD