A local authenticated attacker could exploit this vulnerability to cause a denial of service.
CVE-2020-12362: Intel Graphics Drivers could allow a local authenticated attacker to gain elevated privileges on the system, caused by an integer overflow in the firmware.Linux Kernel as used by IBM QRadar SIEM contains multiple vulnerabilities IBM QRadar SIEM Performs Key Exchange Without Entity Authentication on Inter-Host CommunicationsĬVE-2021-29779: IBM QRadar could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in the middle techniques. CVSS Base score: 5.9ĬVE-2021-2161: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high integrity impact, and no availability impact. IBM QRadar SIEM 7.4.0 to 7.4.3 Fix Pack 2ĬVE-2021-20400: IBM QRadar uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.IBM QRadar SIEM 7.3.0 to 7.3.3 Fix Pack 9.QRadar 7.4.3 Fix Pack 3 was removed for on-premise QRadar SIEM users. Note: Version 7.4.3 Fix Pack 3 is only available to QRadar on Cloud users.
This change allows users to see all 12 security bulletins related 7.4.3 Fix Pack 4 and 7.3.3 Fix Pack 10 software releases.Ī vulnerability in IBM Java SDK and IBM Java Runtime affects IBM QRadar SIEM Last update: 3 December 2021: Resolves an issue in the table where a security bulletin didn’t display properly for QRadar 7.3.3 Fix Pack 10.