CVE-2015-2008
MEDIUMIBM QRadar SIEM 7.1.x-7.1 MR2 Patch 11 and 7.2.x-7.2.5 - Sensitive Information Exposure via Backup Archive
Title source: llmDescription
IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.6 includes SSH private keys during backup operations, which allows remote authenticated administrators to obtain sensitive information by reading a backup archive.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21967632
Scores
CVSS v3
4.4
EPSS
0.0079
EPSS Percentile
51.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-284
Status
published
Products (7)
ibm/qradar_security_information_and_event_manager
7.1.0
ibm/qradar_security_information_and_event_manager
7.2.0
ibm/qradar_security_information_and_event_manager
7.2.1
ibm/qradar_security_information_and_event_manager
7.2.2
ibm/qradar_security_information_and_event_manager
7.2.3
ibm/qradar_security_information_and_event_manager
7.2.4
ibm/qradar_security_information_and_event_manager
7.2.5
Published
Feb 15, 2016
Tracked Since
Feb 18, 2026