Vulnerability in Ibm Security Qradar Siem

CVE-2018-1418

IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.

EPSS: 0.700 (98.7th percentile) — read the EPSS interpretation.

Affected products

Ibm Security Qradar Siem — versions 7.2, 7.3

Public proof-of-concept exploits

rapid7/metasploit-framework

References

45005 (exploit, x_refsource_EXPLOIT-DB)
ibm-qrdar-cve20181418-priv-escalation(138824) (vdb-entry, x_refsource_XF)
www.ibm.com/support/docview.wss (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2018-1418?: CVE-2018-1418 is a vulnerability in Ibm Security Qradar Siem. Published 2018-04-26.
Is CVE-2018-1418 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.