CVE-2023-47146
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2023-47146 is a vulnerability in IBM Qradar Security Information and Event Management (SIEM) version 7.5. A privileged user can exploit this issue by gaining unauthorized access to sensitive domain information due to misidentified data. The vulnerability, tracked as IBM X-Force ID 270372, poses a significant risk to organizations relying on IBM Qradar SIEM for security management. The misidentification of data allows privileged users to bypass access controls and potentially gain insights into confidential domains, compromising the security posture of the affected environment. IBM urges users to update their software to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- IBM QRadar SIEM
Affected Vendors
- IBM Corporation
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions