Vulnerabilities > IBM > Qradar Network Security > 5.4

DATE CVE VULNERABILITY TITLE RISK
2017-09-05 CVE-2017-1491 Unspecified vulnerability in IBM Qradar Network Security 5.4
IBM QRadar Network Security 5.4 supports interaction between multiple actors and allows those actors to negotiate which algorithm should be used as a protection mechanism such as encryption or authentication, but it does not select the strongest algorithm that is available to both parties.
network
low complexity
ibm
7.5
2017-09-05 CVE-2017-1458 XXE vulnerability in IBM Qradar Network Security 5.4
IBM QRadar Network Security 5.4 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
8.1
2017-09-05 CVE-2017-1457 Cross-site Scripting vulnerability in IBM Qradar Network Security 5.4
IBM QRadar Network Security 5.4 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1