IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 uses weak permissions for unspecified directories under the web root, which allows local users to modify data by writing to a file.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21987773 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/95002 | |
http://www-01.ibm.com/support/docview.wss?uid=swg21987773 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/95002 |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21987773 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/95002 - |
Information
Published : 2016-11-30 18:59
Updated : 2024-11-21 02:48
NVD link : CVE-2016-2877
Mitre link : CVE-2016-2877
CVE.ORG link : CVE-2016-2877
JSON object : View
Products Affected
ibm
- qradar_security_information_and_event_manager
CWE
CWE-275
Permission Issues