IBM Security Bulletin: IBM QRadar SIEM is vulnerable to incorrect permission assignment. (CVE-2017-1624)
Apr 3, 2018 9:00 am EDT
Categorized: Medium Severity
Share this post:
The software specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
CVE(s): CVE-2017-1624
Affected product(s) and affected version(s):
· QRadar 7.3.0 to 7.3.1 Patch 2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22015236
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133122
from IBM Product Security Incident Response Team https://ift.tt/2q2JgLI