Vulnerabilities > IBM > Qradar Network Security > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-08 | CVE-2020-4152 | Cleartext Transmission of Sensitive Information vulnerability in IBM Qradar Network Security IBM QRadar Network Security 5.4.0 and 5.5.0 transmits sensitive or security-critical data in cleartext in a communication channel that can be obtained using man in the middle techniques. | 5.9 |
| 2021-11-08 | CVE-2020-4153 | Cross-site Scripting vulnerability in IBM Qradar Network Security IBM QRadar Network Security 5.4.0 and 5.5.0 is vulnerable to cross-site scripting. | 5.4 |
| 2021-11-08 | CVE-2020-4160 | Unspecified vulnerability in IBM Qradar Network Security IBM QRadar Network Security 5.4.0 and 5.5.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2017-09-05 | CVE-2017-1457 | Cross-site Scripting vulnerability in IBM Qradar Network Security 5.4 IBM QRadar Network Security 5.4 is vulnerable to cross-site scripting. | 6.1 |