Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM SOAR QRadar Plugin App log injection
Vulnerability Description
IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to manipulate output written to log files. IBM X-Force ID: 260576.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
日志输出的转义处理不恰当
Vulnerability Title
IBM QRadar SOAR Plug-in 安全漏洞
Vulnerability Description
IBM QRadar SOAR Plug-in是美国国际商业机器(IBM)公司的用于在IBM Security QRadar SIEM 和 QRadar SOAR 之间提供双向信息传输的工具。 IBM QRadar SOAR Plug-in 1.0版本至5.0.3版本存在安全漏洞,该漏洞源于允许经过身份验证的用户操作写入日志文件的输出。
CVSS Information
N/A
Vulnerability Type
N/A