SymmetricalDataSecurity: IBM Security Bulletin: IBM QRadar Incident Forensics, as used in IBM QRadar SIEM, is vulnerable to authenticated path traversal. (CVE-2017-1723)

Wednesday, April 25, 2018

IBM Security Bulletin: IBM QRadar Incident Forensics, as used in IBM QRadar SIEM, is vulnerable to authenticated path traversal. (CVE-2017-1723)

Apr 25, 2018 9:01 am EDT

Share this post:

QRadar uses raw string concatenation to build paths from user input and as such is vulnerable to path traversal attacks where an attacker arbitrarily alters the path.

CVE(s): CVE-2017-1723

Affected product(s) and affected version(s):

QRadar / QRIF / QNI 7.3.0 to 7.3.0 Patch 7

QRadar / QRIF / QNI 7.2.0 to 7.2.8 Patch 11

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22015804
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134812

from IBM Product Security Incident Response Team https://ift.tt/2HYTpBH

SymmetricalDataSecurity

Wednesday, April 25, 2018

IBM Security Bulletin: IBM QRadar Incident Forensics, as used in IBM QRadar SIEM, is vulnerable to authenticated path traversal. (CVE-2017-1723)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews