CVSS: 4.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49822 – IBM QRadar Advisor server-side request forgery
https://notcve.org/view.php?id=CVE-2024-49822
18 Mar 2025 — IBM QRadar Advisor 1.0.0 through 2.6.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. • https://www.ibm.com/support/pages/node/7186424 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-20380
https://notcve.org/view.php?id=CVE-2021-20380
03 Jun 2021 — IBM QRadar Advisor With Watson App 1.1 through 2.5 as used on IBM QRadar SIEM 7.4 could allow a remote user to obtain sensitive information from HTTP requests that could aid in further attacks against the system. IBM X-Force ID: 195712. IBM QRadar Advisor With Watson App versiones 1.1 hasta 2.5, como es usado en IBM QRadar SIEM versión 7.4, podría permitir a un usuario remoto obtener información confidencial de las peticiones HTTP, lo que podría contribuir a otros ataques contra el sistema. IBM X-Force ID: ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/195712 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-4556
https://notcve.org/view.php?id=CVE-2019-4556
09 Nov 2019 — IBM QRadar Advisor 1.0.0 through 2.4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 166205. IBM QRadar Advisor versiones 1.0.0 hasta 2.4.0, utiliza listas negras incompletas para la comprobación de entrada lo que permite a atacantes omitir los controles de la aplicación, resultando en un impacto directo en el sistema y la integridad de los datos. ID de IBM X-Force: 166205. • https://exchange.xforce.ibmcloud.com/vulnerabilities/166205 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-1732
https://notcve.org/view.php?id=CVE-2018-1732
05 Dec 2018 — IBM QRadar Advisor with Watson 1.14.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 147810. IBM QRadar Advisor con Watson versión 1.14.0 divulga información sensible a usuarios no autorizados. La información puede ser usada para montar futuros ataques sobre el sistema. • http://www.ibm.com/support/docview.wss?uid=ibm10736009 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •