CVE-2015-2009
HIGHIBM QRadar SIEM 7.2.0-7.2.4 - Cross-Site Request Forgery via xmlrpc.cgi
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the xmlrpc.cgi service in IBM QRadar SIEM 7.1 before MR2 Patch 11 Interim Fix 02 and 7.2.x before 7.2.5 Patch 4 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences via vectors related to webmin. IBM X-Force ID: 103921.
References (1)
Core 1
Core References
Broken Link x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21965821
Scores
CVSS v3
8.8
EPSS
0.0055
EPSS Percentile
42.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (3)
ibm/qradar_security_information_and_event_manager
7.1.0 (3 CPE variants)
ibm/qradar_security_information_and_event_manager
7.2.5 patch1 (3 CPE variants)
ibm/qradar_security_information_and_event_manager
7.2.0 - 7.2.5
Published
Mar 29, 2018
Tracked Since
Feb 18, 2026