Lucene search
IBMFA5BCFED2971B0962BAFD91D106280759E731E44B909BF2DA2152BF222860FDCHistoryMay 04, 2021 - 5:43 p.m.
Security Bulletin: IBM QRadar SIEM is vulnerable to insecure inter-deployment communication (CVE-2020-4979)
2021-05-0417:43:45
www.ibm.com
5
0.001 Low
EPSS
Percentile
51.1%
Summary
IBM QRadar SIEM is vulnerable to insecure inter-deployment communication
Vulnerability Details
CVEID:CVE-2020-4979
**DESCRIPTION:**IBM QRadar SIEM is vulnerable to insecure inter-deployment communication. An attacker that is able to comprimise or spoof traffic between hosts may be able to execute arbitrary commands.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/192538 for the current score.
CVSS Vector: (CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
Affected Products and Versions
IBM QRadar 7.3.0 to 7.3.3 Patch 7
IBM QRadar 7.4.0 to 7.4.2 Patch 2
Remediation/Fixes
QRadar / QRM / QVM / QRIF / QNI 7.3.3 Patch 8
QRadar / QRM / QVM / QRIF / QNI 7.4.2 Patch 3
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security qradar siem | eq | 7.3 | |
| ibm security qradar siem | eq | 7.4 |
Related
cve
cve
CVE-2020-4979
2021-05-05 16:15:07
prion
prion
Code injection
2021-05-05 16:15:00
nvd
nvd
CVE-2020-4979
2021-05-05 16:15:07
cvelist
cvelist
CVE-2020-4979
2021-05-04 00:00:00
0.001 Low
EPSS
Percentile
51.1%
Related for FA5BCFED2971B0962BAFD91D106280759E731E44B909BF2DA2152BF222860FDC