Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before MR2 Patch 9 and 7.2 before 7.2.4 Patch 1, and QRadar Vulnerability Manager 7.2 before 7.2.4 Patch 1, allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2014-11-28T02:00:00

Updated: 2024-08-06T11:27:36.904Z

Reserved: 2014-07-09T00:00:00

Link: CVE-2014-4829

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-11-28T02:59:01.270

Modified: 2024-11-21T02:10:56.750

Link: CVE-2014-4829

cve-icon Redhat

No data.