Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the UI in IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 allow remote authenticated users to inject arbitrary web script or HTML via crafted fields in a URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM QRadar SIEM 跨站脚本漏洞
Vulnerability Description
IBM QRadar SIEM是美国IBM公司的一套利用安全智能保护资产和信息远离高级威胁的解决方案。该方案提供对整个IT架构范围进行监督、生成详细的数据访问和用户活动报告等功能。 IBM QRadar SIEM 7.1.n和7.2.n版本中存在跨站脚本漏洞,该漏洞源于程序没有正确验证用户提交的输入。远程攻击者可通过使用特制的URL利用该漏洞在浏览器上下文中执行任意代码,窃取基于cookie的身份认证。
CVSS Information
N/A
Vulnerability Type
N/A