Vulnerabilities > CVE-2020-4160 - Unspecified vulnerability in IBM Qradar Network Security
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE network
ibm
Summary
IBM QRadar Network Security 5.4.0 and 5.5.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 174340.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |