CVE-2024-38335

IBM Security QRadar Network Threat Analytics 1.0.0 through 1.3.1 could allow a privileged user to cause a denial of service due to improper allocation of resources.

CVSS v3 4.5 MEDIUM

4.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.ibm.com/support/pages/node/7240244	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:ibm:qradar_network_threat_analytics:*:*:*:*:*:*:*:*

History

14 Aug 2025, 18:49

Type	Values Removed	Values Added
References	~~() https://www.ibm.com/support/pages/node/7240244 -~~	() https://www.ibm.com/support/pages/node/7240244 - Vendor Advisory
First Time		Ibm qradar Network Threat Analytics Ibm
CPE		cpe:2.3:a:ibm:qradar_network_threat_analytics::::::::

25 Jul 2025, 15:29

Type	Values Removed	Values Added
Summary		(es) IBM Security QRadar Network Threat Analytics 1.0.0 hasta 1.3.1 podría permitir que un usuario privilegiado provoque una denegación de servicio debido a una asignación incorrecta de recursos.

22 Jul 2025, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-22 18:15

Updated : 2025-08-14 18:49

NVD link : CVE-2024-38335

Mitre link : CVE-2024-38335

CVE.ORG link : CVE-2024-38335

JSON object : View

Products Affected

ibm

qradar_network_threat_analytics

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

4.5 /10