Vulnerabilities > IBM > Qradar Security Information AND Event Manager > 7.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-11-28 | CVE-2014-4829 | Cross-Site Request Forgery (CSRF) vulnerability in IBM products Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. | 6.8 |