Vulnerability Description
IBM QRadar SIEM 7.3 and 7.4 could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in the middle techniques. IBM X-Force ID: 203033.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Qradar Security Information And Event Manager | >= 7.3.0, <= 7.3.3 |
| Linux | Linux Kernel | - |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/203033VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6520484PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/203033VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6520484PatchVendor Advisory
FAQ
What is CVE-2021-29779?
CVE-2021-29779 is a vulnerability with a CVSS score of 5.9 (MEDIUM). IBM QRadar SIEM 7.3 and 7.4 could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in th...
How severe is CVE-2021-29779?
CVE-2021-29779 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-29779?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Qradar Security Information And Event Manager, Linux Linux Kernel.