CVE-2022-36771 - Vulnerability Details - OpenCVE

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00124.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Ibm	Qradar User Behavior Analytics

Configuration 1 [-]

cpe:2.3:a:ibm:qradar_user_behavior_analytics:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2022-39471	IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://exchange.xforce.ibmcloud.com/vulnerabilities/232791
https://www.ibm.com/support/pages/node/6824197

History

Wed, 21 May 2025 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-284
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2022-09-28T15:55:16.059Z

Updated: 2025-05-21T14:25:03.232Z

Reserved: 2022-07-26T00:00:00.000Z

Link: CVE-2022-36771

Vulnrichment

Updated: 2024-08-03T10:14:28.476Z

NVD

Status : Modified

Published: 2022-09-28T16:15:12.160

Modified: 2025-05-21T15:15:57.307

Link: CVE-2022-36771

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "QRadar User Behavior Analytics", "vendor": "IBM", "versions": [{"status": "affected", "version": "4.1.8"}]}], "datePublic": "2022-09-27T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "exploitCodeMaturity": "UNPROVEN", "integrityImpact": "NONE", "privilegesRequired": "LOW", "remediationLevel": "OFFICIAL_FIX", "reportConfidence": "CONFIRMED", "scope": "UNCHANGED", "temporalScore": 3.8, "temporalSeverity": "LOW", "userInteraction": "NONE", "vectorString": "CVSS:3.0/C:L/PR:L/A:N/I:N/AC:L/AV:N/S:U/UI:N/RL:O/E:U/RC:C", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "Obtain Information", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-09-28T15:55:15.000Z", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.ibm.com/support/pages/node/6824197"}, {"name": "ibm-qradar-cve202236771-info-disc (232791)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "DATE_PUBLIC": "2022-09-27T00:00:00", "ID": "CVE-2022-36771", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "QRadar User Behavior Analytics", "version": {"version_data": [{"version_value": "4.1.8"}]}}]}, "vendor_name": "IBM"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791."}]}, "impact": {"cvssv3": {"BM": {"A": "N", "AC": "L", "AV": "N", "C": "L", "I": "N", "PR": "L", "S": "U", "UI": "N"}, "TM": {"E": "U", "RC": "C", "RL": "O"}}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Obtain Information"}]}]}, "references": {"reference_data": [{"name": "https://www.ibm.com/support/pages/node/6824197", "refsource": "CONFIRM", "title": "IBM Security Bulletin 6824197 (QRadar User Behavior Analytics)", "url": "https://www.ibm.com/support/pages/node/6824197"}, {"name": "ibm-qradar-cve202236771-info-disc (232791)", "refsource": "XF", "title": "X-Force Vulnerability Report", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T10:14:28.476Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.ibm.com/support/pages/node/6824197"}, {"name": "ibm-qradar-cve202236771-info-disc (232791)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791"}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-05-21T14:24:57.396012Z", "id": "CVE-2022-36771", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T14:25:03.232Z"}}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2022-36771", "datePublished": "2022-09-28T15:55:16.059Z", "dateReserved": "2022-07-26T00:00:00.000Z", "dateUpdated": "2025-05-21T14:25:03.232Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.ibm.com/support/pages/node/6824197", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791", "name": "ibm-qradar-cve202236771-info-disc (232791)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T10:14:28.476Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-36771", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-05-21T14:24:57.396012Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T14:24:51.606Z"}}], "cna": {"metrics": [{"cvssV3_0": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/C:L/PR:L/A:N/I:N/AC:L/AV:N/S:U/UI:N/RL:O/E:U/RC:C", "temporalScore": 3.8, "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "remediationLevel": "OFFICIAL_FIX", "reportConfidence": "CONFIRMED", "temporalSeverity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "exploitCodeMaturity": "UNPROVEN", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "IBM", "product": "QRadar User Behavior Analytics", "versions": [{"status": "affected", "version": "4.1.8"}]}], "datePublic": "2022-09-27T00:00:00.000Z", "references": [{"url": "https://www.ibm.com/support/pages/node/6824197", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791", "name": "ibm-qradar-cve202236771-info-disc (232791)", "tags": ["vdb-entry", "x_refsource_XF"]}], "descriptions": [{"lang": "en", "value": "IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Obtain Information"}]}], "providerMetadata": {"orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm", "dateUpdated": "2022-09-28T15:55:15.000Z"}, "x_legacyV4Record": {"impact": {"cvssv3": {"BM": {"A": "N", "C": "L", "I": "N", "S": "U", "AC": "L", "AV": "N", "PR": "L", "UI": "N"}, "TM": {"E": "U", "RC": "C", "RL": "O"}}}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "4.1.8"}]}, "product_name": "QRadar User Behavior Analytics"}]}, "vendor_name": "IBM"}]}}, "data_type": "CVE", "references": {"reference_data": [{"url": "https://www.ibm.com/support/pages/node/6824197", "name": "https://www.ibm.com/support/pages/node/6824197", "title": "IBM Security Bulletin 6824197 (QRadar User Behavior Analytics)", "refsource": "CONFIRM"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791", "name": "ibm-qradar-cve202236771-info-disc (232791)", "title": "X-Force Vulnerability Report", "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Obtain Information"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2022-36771", "STATE": "PUBLIC", "ASSIGNER": "psirt@us.ibm.com", "DATE_PUBLIC": "2022-09-27T00:00:00"}}}}, "cveMetadata": {"cveId": "CVE-2022-36771", "state": "PUBLISHED", "dateUpdated": "2025-05-21T14:25:03.232Z", "dateReserved": "2022-07-26T00:00:00.000Z", "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "datePublished": "2022-09-28T15:55:16.059Z", "assignerShortName": "ibm"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:qradar_user_behavior_analytics:*:*:*:*:*:*:*:*", "matchCriteriaId": "72E98260-E9FD-4D71-9689-9077F710A0ED", "versionEndExcluding": "4.1.9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive information from that they should not have access to. IBM X-Force ID: 232791."}, {"lang": "es", "value": "IBM QRadar User Behavior Analytics podr\u00eda permitir a un usuario autenticado obtener informaci\u00f3n confidencial a la que no deber\u00eda tener acceso. IBM X-Force ID: 232791"}], "id": "CVE-2022-36771", "lastModified": "2025-05-21T15:15:57.307", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "psirt@us.ibm.com", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-09-28T16:15:12.160", "references": [{"source": "psirt@us.ibm.com", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791"}, {"source": "psirt@us.ibm.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.ibm.com/support/pages/node/6824197"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/232791"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.ibm.com/support/pages/node/6824197"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}