CVE-2021-39088

HIGH

IBM QRadar SIEM 7.3-7.5 - Local Privilege Escalation

Title source: llm

Description

IBM QRadar SIEM 7.3, 7.4, and 7.5 is vulnerable to local privilege escalation if this could be combined with other unknown vulnerabilities then privilege escalation could be performed. IBM X-Force ID: 216111.

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_confirm

https://www.ibm.com/support/pages/node/6607129

VDB Entry, Vendor Advisory vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/216111

Scores

CVSS v3 7.8

EPSS 0.0005

EPSS Percentile 15.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (4)

ibm/qradar_security_information_and_event_manager 7.3.3 (12 CPE variants)

ibm/qradar_security_information_and_event_manager 7.4.3 (5 CPE variants)

ibm/qradar_security_information_and_event_manager 7.5.0 (2 CPE variants)

ibm/qradar_security_information_and_event_manager 7.3.0 - 7.3.3

Published Jul 28, 2022

Tracked Since Feb 18, 2026