CVE-2025-33119

Summary

IBM QRadar SIEM 7.5 through 7.5.0 UP14 stores user credentials in configuration files in source control which can be read by an authenticated user.

Affected Software

VendorProductVersion RangeStatus
IBMQRadar Security Information and Event Management7.5 <= 7.5.0 UP14affected

Weaknesses

  • CWE-260: CWE-260 Password in Configuration File

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References