Lucene search

[email protected]NVD:CVE-2018-1568

HistoryDec 05, 2018 - 5:29 p.m.

CVE-2018-1568

2018-12-0517:29:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.6

Confidence

High

EPSS

Percentile

12.6%

JSON

IBM QRadar SIEM 7.2 and 7.3 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 143118.

Affected configurations

Nvd

Node

ibmqradar_incident_forensicsRange7.2.0–7.2.8

ibmqradar_incident_forensicsRange7.3.0–7.3.1

ibmqradar_incident_forensicsMatch7.2.8-

ibmqradar_incident_forensicsMatch7.2.8p1

ibmqradar_incident_forensicsMatch7.2.8p10

ibmqradar_incident_forensicsMatch7.2.8p11

ibmqradar_incident_forensicsMatch7.2.8p12

ibmqradar_incident_forensicsMatch7.2.8p13

ibmqradar_incident_forensicsMatch7.2.8p3

ibmqradar_incident_forensicsMatch7.2.8p4

ibmqradar_incident_forensicsMatch7.2.8p5

ibmqradar_incident_forensicsMatch7.2.8p6

ibmqradar_incident_forensicsMatch7.2.8p7

ibmqradar_incident_forensicsMatch7.2.8p8

ibmqradar_incident_forensicsMatch7.2.8p9

ibmqradar_incident_forensicsMatch7.3.1-

ibmqradar_incident_forensicsMatch7.3.1p1

ibmqradar_incident_forensicsMatch7.3.1p2

ibmqradar_incident_forensicsMatch7.3.1p3

ibmqradar_incident_forensicsMatch7.3.1p4

VendorProductVersionCPE
ibmqradar_incident_forensics*cpe:2.3:a:ibm:qradar_incident_forensics:*:*:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:-:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p1:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p10:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p11:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p12:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p13:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p3:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p4:*:*:*:*:*:*
ibmqradar_incident_forensics7.2.8cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p5:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	qradar_incident_forensics	*	cpe:2.3:a:ibm:qradar_incident_forensics::::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:-::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p1::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p10::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p11::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p12::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p13::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p3::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p4::::::
ibm	qradar_incident_forensics	7.2.8	cpe:2.3:a:ibm:qradar_incident_forensics:7.2.8:p5::::::

Rows per page:

1-10 of 191

References

www.ibm.com/support/docview.wss?uid=ibm10737023

exchange.xforce.ibmcloud.com/vulnerabilities/143118

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.6

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2018-1568

ibm1 prion1 cvelist1 cve1