Vulnerabilities > CVE-2023-43041 - Unspecified vulnerability in IBM Qradar Security Information and Event Manager 7.5.0

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

ibm

NVD

Published: 2023-10-29

Updated: 2023-11-07

Summary

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Qradar Security Information AND Event Manager 7.5.0	7

References

https://www.ibm.com/support/pages/node/7060803
https://exchange.xforce.ibmcloud.com/vulnerabilities/266808