Vulnerabilities > IBM > Qradar Security Information AND Event Manager > 7.5.0

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-27	CVE-2021-38874	Unspecified vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3, 7.4, and 7.5 allows for users to access information across tenant and domain boundaries in some situations. network low complexity ibm	4.0
2022-04-27	CVE-2021-38878	Unspecified vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar 7.3, 7.4, and 7.5 could allow a malicious actor to impersonate an actor due to key exchange without entity authentication. network low complexity ibm	7.5
2022-04-27	CVE-2021-38919	Unspecified vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3, 7.4, and 7.5 in some senarios may reveal authorized service tokens to other QRadar users. network low complexity ibm	5.0
2022-04-27	CVE-2021-38939	Information Exposure Through Log Files vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that could be read by an user with access to creating domains. network low complexity ibm CWE-532	5.0
2022-04-27	CVE-2022-22345	Cross-site Scripting vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar 7.3, 7.4, and 7.5 is vulnerable to cross-site scripting. network ibm CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.