Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-4829
HistoryNov 28, 2014 - 2:59 a.m.

CVE-2014-4829

2014-11-2802:59:01
CWE-352
[email protected]
web.nvd.nist.gov
2

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON

Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.

Affected configurations

Nvd
Node
ibmqradar_vulnerability_managerMatch7.2.0
OR
ibmqradar_vulnerability_managerMatch7.2.1
OR
ibmqradar_vulnerability_managerMatch7.2.2
OR
ibmqradar_vulnerability_managerMatch7.2.3
OR
ibmqradar_vulnerability_managerMatch7.2.4
Node
ibmqradar_security_information_and_event_managerMatch7.1.0
OR
ibmqradar_security_information_and_event_managerMatch7.2.0
OR
ibmqradar_security_information_and_event_managerMatch7.2.1
OR
ibmqradar_security_information_and_event_managerMatch7.2.2
OR
ibmqradar_security_information_and_event_managerMatch7.2.3
OR
ibmqradar_security_information_and_event_managerMatch7.2.4
Node
ibmqradar_risk_managerMatch7.1.0
OR
ibmqradar_risk_managerMatch7.2.0
OR
ibmqradar_risk_managerMatch7.2.1
OR
ibmqradar_risk_managerMatch7.2.2
OR
ibmqradar_risk_managerMatch7.2.3
OR
ibmqradar_risk_managerMatch7.2.4
VendorProductVersionCPE
ibmqradar_vulnerability_manager7.2.0cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.0:*:*:*:*:*:*:*
ibmqradar_vulnerability_manager7.2.1cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.1:*:*:*:*:*:*:*
ibmqradar_vulnerability_manager7.2.2cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.2:*:*:*:*:*:*:*
ibmqradar_vulnerability_manager7.2.3cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.3:*:*:*:*:*:*:*
ibmqradar_vulnerability_manager7.2.4cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.4:*:*:*:*:*:*:*
ibmqradar_security_information_and_event_manager7.1.0cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.1.0:*:*:*:*:*:*:*
ibmqradar_security_information_and_event_manager7.2.0cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:*:*:*:*:*:*:*
ibmqradar_security_information_and_event_manager7.2.1cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.1:*:*:*:*:*:*:*
ibmqradar_security_information_and_event_manager7.2.2cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.2:*:*:*:*:*:*:*
ibmqradar_security_information_and_event_manager7.2.3cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.3:*:*:*:*:*:*:*
Rows per page:
1-10 of 171

Related

cve 1
prion 1
cvelist 1
ibm 1
cve
cve
CVE-2014-4829
2014-11-28 02:59:01
prion
prion
Cross site request forgery (csrf)
2014-11-28 02:59:00
cvelist
cvelist
CVE-2014-4829
2014-11-28 02:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities found in IBM QRadar SIEM and QRadar Risk Manager (CVE-2014-4832, CVE-2014-4831, CVE-2014-4829, CVE-2014-4829, CVE-2014-6075)
2022-02-23 17:02:11

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON
Related for NVD:CVE-2014-4829
cve1prion1cvelist1ibm1