Oct 7, 2020 8:02 pm EDT
Categorized: Medium Severity
Share this post:
IBM QRadar SIEM could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function
Affected product(s) and affected version(s):
IBM QRadar SIEM 7.4.0 – 7.4.1 GA
IBM QRadar SIEM 7.3.0 – 7.3.3 Patch 4
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6344079
from IBM Product Security Incident Response Team https://ift.tt/2SzYxSX
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.