The Log file protocol could allow permissions to a resource to be read or modified by unintended actors.
CVEID: CVE-2018-2024
**Description:**IBM QRadar specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
**CVSS Base Score:**4.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/155350> for the current score
**CVSS Environmental Score:***Undefined
**CVSS Vector:**CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
7.2.0-QRADAR-PROTOCOL-LogFileProtocol-7.2-20180625094737 and prior
7.3.0-QRADAR-PROTOCOL-LogFileProtocol-7.3-20180625134822 and prior
7.2.0-QRADAR-PROTOCOL-LogFileProtocol-7.2-20190617154048
7.3.0-QRADAR-PROTOCOL-LogFileProtocol-7.3-20190617194019
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm security qradar siem | eq | 7.2 | |
ibm security qradar siem | eq | 7.3 |