CVE-2025-36051

Summary

IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 stores potentially sensitive information in configuration files that could be read by a local user.

Affected Software

VendorProductVersion RangeStatus
IBMQRadar SIEM7.5.0 <= 7.5.0 Update Pack 14affected

Weaknesses

  • CWE-538: CWE-538 Insertion of sensitive information into Externally-Accessible file or directory

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References