IBM8E7A6E5B7992191D7B7B03F5E011D269D1E0A4092F2696ED696686E40F112706Security Bulletin: The product allows web pages containing sensitive information to be cached by a browser. As a result this information will be stored unsafely for an indefinite amount of time on the user's hard drive. Attackers with local access or malware installed on the user's computer can access the sensitive data.
EPSS
Percentile
12.6%
Summary
The product allows web pages containing sensitive information to be cached by a browser. As a result this information will be stored unsafely for an indefinite amount of time on the user’s hard drive. Attackers with local access or malware installed on the user’s computer can access the sensitive data.
Vulnerability Details
CVEID: CVE-2018-1568
**Description:**IBM QRadar allows web pages to be stored locally which can be read by another user on the system.
**CVSS Base Score:**4.00
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/143118> for the current score
**CVSS Environmental Score:***Undefined
**CVSS Vector:**CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products and Versions
IBM QRadar SIEM 7.2.0 - 7.2.8 Patch 13
IBM QRadar SIEM 7.3.0 - 7.3.1 Patch 4
Remediation/Fixes
QRadar / QRM / QVM / QRIF / QNI 7.3.1 Patch 5
QRadar / QRM / QVM / QRIF / QNI 7.2.8 Patch 14
Workarounds and Mitigations
None
Related
EPSS
Percentile
12.6%