CVE-2020-5013

IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 193245.

Summary:

IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 193245.

Reference Links(if available):

  • https://www.ibm.com/support/pages/node/6449690
  • https://exchange.xforce.ibmcloud.com/vulnerabilities/193245
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)