mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
93 lines
2.9 KiB
JSON
93 lines
2.9 KiB
JSON
{
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://www.ibm.com/support/pages/node/1074538",
|
|
"refsource": "CONFIRM",
|
|
"title": "IBM Security Bulletin 1074538 (QRadar SIEM)",
|
|
"name": "https://www.ibm.com/support/pages/node/1074538"
|
|
},
|
|
{
|
|
"refsource": "XF",
|
|
"title": "X-Force Vulnerability Report",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/160014",
|
|
"name": "ibm-qradar-cve20194262-ssrf (160014)"
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "IBM",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "7.2"
|
|
},
|
|
{
|
|
"version_value": "7.3"
|
|
}
|
|
]
|
|
},
|
|
"product_name": "QRadar SIEM"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_type": "CVE",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"value": "IBM QRadar SIEM 7.2 and 7.3 is vulnerable to Server Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the QRadar system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 160014.",
|
|
"lang": "eng"
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"value": "Gain Access",
|
|
"lang": "eng"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2019-4262",
|
|
"STATE": "PUBLIC",
|
|
"DATE_PUBLIC": "2019-09-24T00:00:00",
|
|
"ASSIGNER": "psirt@us.ibm.com"
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_version": "4.0",
|
|
"impact": {
|
|
"cvssv3": {
|
|
"BM": {
|
|
"AV": "N",
|
|
"PR": "N",
|
|
"I": "L",
|
|
"AC": "L",
|
|
"S": "U",
|
|
"SCORE": "5.300",
|
|
"C": "N",
|
|
"A": "N",
|
|
"UI": "N"
|
|
},
|
|
"TM": {
|
|
"RC": "C",
|
|
"RL": "O",
|
|
"E": "U"
|
|
}
|
|
}
|
|
}
|
|
} |