CVE-2014-4829

Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg21691211	Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/95579

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.0:::::::*
	cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.1:::::::*
	cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.2:::::::*
	cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.3:::::::*
	cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.4:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.1.0:::::::*
	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:::::::*
	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.1:::::::*
	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.2:::::::*
	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.3:::::::*
	cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.4:::::::*

Configuration 3 (hide)

OR	cpe:2.3:a:ibm:qradar_risk_manager:7.1.0:::::::*
	cpe:2.3:a:ibm:qradar_risk_manager:7.2.0:::::::*
	cpe:2.3:a:ibm:qradar_risk_manager:7.2.1:::::::*
	cpe:2.3:a:ibm:qradar_risk_manager:7.2.2:::::::*
	cpe:2.3:a:ibm:qradar_risk_manager:7.2.3:::::::*
	cpe:2.3:a:ibm:qradar_risk_manager:7.2.4:::::::*

History

No history.

Information

Published : 2014-11-28 02:59

Updated : 2024-02-04 18:35

NVD link : CVE-2014-4829

Mitre link : CVE-2014-4829

CVE.ORG link : CVE-2014-4829

JSON object : View

Products Affected

ibm

qradar_vulnerability_manager
qradar_security_information_and_event_manager
qradar_risk_manager

CWE

CWE-352

Cross-Site Request Forgery (CSRF)

{"id": "CVE-2014-4829", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-28T02:59:01.270", "references": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21691211", "tags": ["Patch", "Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95579", "source": "psirt@us.ibm.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences."}, {"lang": "es", "value": "Vulnerabilidad de CSRF en IBM Security QRadar SIEM and QRadar Risk Manager 7.1 anterior a MR2 Patch 9 y 7.2 anterior a 7.2.4 Patch 1, y QRadar Vulnerability Manager 7.2 anterior a 7.2.4 Patch 1, permite a atacantes remotos secuestrar la autenticaci\u00f3n de usuarios arbitrarios para solicitudes que insertan secuencias de XSS."}], "lastModified": "2017-08-29T01:35:09.297", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4975223D-9E31-4CEC-A4B6-C0996828B855"}, {"criteria": "cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22E0F4A7-B8BD-42D1-92DB-2B510FFC9C36"}, {"criteria": "cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C15C820B-4778-4B8F-8BD8-E996F1D4062D"}, {"criteria": "cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A42E70EE-2E23-4D92-ADE0-9177B9EDD430"}, {"criteria": "cpe:2.3:a:ibm:qradar_vulnerability_manager:7.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01C91446-4A36-4FCE-A973-3E6F813FABC9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C062C89-5DC2-46EE-A9D3-23E7539A5DAF"}, {"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C137959-2279-4459-8A10-43AFE09E2641"}, {"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39D53329-E729-43C1-8C67-EFA4C3F7BFBC"}, {"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FC4EDCA-DF37-4366-B944-F342FA55EEFD"}, {"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09D0DA15-7DC3-4B1E-9CD9-EFC7FE4C0FEA"}, {"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76CA942D-70AD-4E0D-A28E-443FB7140A54"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E476AEB-AD38-4033-8426-DC502497D75A"}, {"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB7DFDBB-6C8C-44AC-96CD-F6393320AB87"}, {"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7D2CE0E-0A79-4DC7-AD7A-B79A5E613102"}, {"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A98ADDC-9615-4F5D-893D-E810ABD95042"}, {"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A70602BE-5069-44FA-B449-93637F5F89B0"}, {"criteria": "cpe:2.3:a:ibm:qradar_risk_manager:7.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A54D93A6-9639-43CA-8CC4-F98FE8067648"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}