CVE-2023-47726

Published: Jun 18, 2024Modified: Aug 8, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

IBM QRadar Suite Software 1.10.12.0 through 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0 through 1.10.21.0 could allow an authenticated user to execute certain arbitrary commands due to improper input validation. IBM X-Force ID: 272087.

Affected (2)

Products: Ibm: Cloud Pak For Security, Qradar Suite

Ibm

2 products

Cloud Pak For Security

Qradar Suite

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Cloud Pak For Security	From 1.10.12.0 to 1.10.21.0
Ibm Qradar Suite	From 1.10.12.0 to 1.10.21.0

Related CWEs

CWE-1287

Improper Validation of Specified Type of Input

The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.

References (4)

https://exchange.xforce.ibmcloud.com/vulnerabilities/272087

Source: psirt@us.ibm.com

Vendor Advisory

https://https://www.ibm.com/support/pages/node/7157750

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/272087

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://https://www.ibm.com/support/pages/node/7157750

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.