Information Exposure Vulnerability in IBM QRadar SIEM 7.5 Allows Delegated Admin Tenant User to Access Data from Other Domains

Information Exposure Vulnerability in IBM QRadar SIEM 7.5 Allows Delegated Admin Tenant User to Access Data from Other Domains

CVE-2023-43041 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808.

Learn more about our User Device Pen Test.