CNNVD-202509-1856 Information
CNNVD ID
CNNVD-202509-1856
Related CVE
- CNNVD Published: 2025-09-14
Description (Chinese)
IBM QRadar SIEM是美国国际商业机器(IBM)公司的一套利用安全智能保护资产和信息远离高级威胁的解决方案。该方案提供对整个IT架构范围进行监督、生成详细的数据访问和用户活动报告等功能。 IBM QRadar SIEM 7.5版本至7.5 Update Pack 13 Independent Fix 01版本存在安全漏洞,该漏洞源于权限分配不当,可能导致本地特权用户对配置文件执行未授权操作。
Description (English)
IBM QRadar SIEM is a solution for the United States International Business Machine (IBM) to use security intelligence to protect assets and information from advanced threats. The programme provides functions such as monitoring the entire IT architecture, generating detailed data access and user activity reports. The IBM QRadar SIEM version 7.5 to 7.5 Update Pack 13 Independent Fix 01 contains a security loophole, which stems from the misallocation of privileges, which may lead to unauthorized local privileged users operating the configuration file.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
ICEcoder
Published
2025-09-14
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7244784 https://access.redhat.com/security/cve/cve-2025-0164 https://vigilance.fr/vulnerability/IBM-QRadar-SIEM-privilege-escalation-via-Configuration-Files-48215
Patch
https://www.ibm.com/support/pages/node/7244784
Share on: