CVE-2022-22424

Summary

IBM QRadar SIEM 7.3, 7.4, and 7.5 could allow a local user to obtain sensitive information from the TLS key file due to incorrect file permissions. IBM X-Force ID: 223597.

Affected Software

VendorProductVersion RangeStatus
IBMQRadar SIEM7.3.0affected
IBMQRadar SIEM7.4.0affected
IBMQRadar SIEM7.5.0affected
IBMQRadar SIEM7.3.3.FixPack11affected
IBMQRadar SIEM7.4.3.FixPack5affected
IBMQRadar SIEM7.5.0.UpdatePack1affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References