IBM QRadar SIEM is vulnerable to a shell command injection the in admin panel if logged in as an admin user.
CVE-ID:CVE-2015-4930
**
Description:IBM QRadar could allow a user authenticated with admin access, to execute commands on the server as root. **
CVSS Base Score:8.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/104118 for the current score**
CVSS Environmental Score:*Undefined
CVSS Vector:**AV:N/AC:M/Au:S/C:C/I:C/A:C
ยท IBM QRadar SIEM 7.2.x.
ยท IBM QRadar SIEM 7.1 MR2 Patch 1 - Patch 10.
ยท IBM QRadar/QRM/QVM/QRIF 7.2.5 Patch 4
ยท IBM QRadar SIEM 7.1 MR2 Patch 11 Interim Fix 02
None