CVE-2015-2008

MEDIUM

IBM QRadar SIEM 7.1.x-7.1 MR2 Patch 11 and 7.2.x-7.2.5 - Sensitive Information Exposure via Backup Archive

Title source: llm
STIX 2.1

Description

IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.6 includes SSH private keys during backup operations, which allows remote authenticated administrators to obtain sensitive information by reading a backup archive.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21967632

Scores

CVSS v3 4.4
EPSS 0.0079
EPSS Percentile 51.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-284
Status published
Products (7)
ibm/qradar_security_information_and_event_manager 7.1.0
ibm/qradar_security_information_and_event_manager 7.2.0
ibm/qradar_security_information_and_event_manager 7.2.1
ibm/qradar_security_information_and_event_manager 7.2.2
ibm/qradar_security_information_and_event_manager 7.2.3
ibm/qradar_security_information_and_event_manager 7.2.4
ibm/qradar_security_information_and_event_manager 7.2.5
Published Feb 15, 2016
Tracked Since Feb 18, 2026