What is CVE-2016-2876?

CVE-2016-2876 is a high-severity vulnerability in Ibm Qradar_security_information_and_event_manager, classified under OS Command Injection. CVSS score: 7.5/10. Published 2016-11-30.

How severe is CVE-2016-2876?

High severity. CVSS v3 base score is 7.5 out of 10.

RCE in Ibm Qradar_security_information_and_event_manager

CVE-2016-2876

IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 executes unspecified processes at an incorrect privilege level, which makes it easier for remote authenticated users to obtain root access by leveraging a command-injection issue.

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.013 (79.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Ibm Qradar_security_information_and_event_manager — versions 7.2.0, 7.2.1, 7.2.2
N/a — versions n/a

Weakness classification (CWE)

References

psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
95001 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2016-2876?: CVE-2016-2876 is a high-severity vulnerability in Ibm Qradar_security_information_and_event_manager, classified under OS Command Injection. CVSS score: 7.5/10. Published 2016-11-30.
How severe is CVE-2016-2876?: High severity. CVSS v3 base score is 7.5 out of 10.