CVE-2024-25023

IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 281429.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:cloud_pak_for_security:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:qradar_suite:*:*:*:*:*:*:*:*

History

19 Sep 2024, 21:14

Type Values Removed Values Added
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/281429 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/281429 - VDB Entry, Vendor Advisory
References () https://www.ibm.com/support/pages/node/7159768 - () https://www.ibm.com/support/pages/node/7159768 - Vendor Advisory
CVSS v2 : unknown
v3 : 6.2
v2 : unknown
v3 : 5.5
First Time Ibm
Ibm qradar Suite
Ibm cloud Pak For Security
CPE cpe:2.3:a:ibm:cloud_pak_for_security:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:qradar_suite:*:*:*:*:*:*:*:*

11 Jul 2024, 13:05

Type Values Removed Values Added
Summary
  • (es) IBM Cloud Pak for Security 1.10.0.0 a 1.10.11.0 e IBM QRadar Suite Software 1.10.12.0 a 1.10.22.0 almacenan información potencialmente confidencial en archivos de registro que un usuario local podría leer. ID de IBM X-Force: 281429.

10 Jul 2024, 01:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-10 01:15

Updated : 2024-09-21 10:15


NVD link : CVE-2024-25023

Mitre link : CVE-2024-25023

CVE.ORG link : CVE-2024-25023


JSON object : View

Products Affected

ibm

  • qradar_suite
  • cloud_pak_for_security
CWE
CWE-312

Cleartext Storage of Sensitive Information