CVE-2015-2008

MEDIUM

IBM Qradar Security Information And E... - Improper Access Control

Title source: rule

Description

IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.6 includes SSH private keys during backup operations, which allows remote authenticated administrators to obtain sensitive information by reading a backup archive.

References (1)

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21967632

Scores

CVSS v3 4.4

EPSS 0.0019

EPSS Percentile 40.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-284

Status draft

Affected Products (7)

ibm/qradar_security_information_and_event_manager

Timeline

Published Feb 15, 2016

Tracked Since Feb 18, 2026