What is CVE-2019-4654?

CVE-2019-4654 is a low-severity vulnerability in Ibm Qradar. CVSS score: 3.7/10. Published 2020-04-15.

How severe is CVE-2019-4654?

Low severity. CVSS v3 base score is 3.7 out of 10.

Vulnerability in Ibm Qradar

CVE-2019-4654

IBM QRadar 7.3.0 to 7.3.3 Patch 2 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-ForceID: 170965.

EPSS: 0.001 (30.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.7 (Low). Vector: CVSS:3.0/C:L/AC:H/PR:N/UI:N/AV:N/I:N/A:N/S:U/RC:C/RL:O/E:U.

Affected products

Ibm Qradar — versions 7.3.3.Patch2, 7.3.0

References

www.ibm.com/support/pages/node/6189723 (x_refsource_CONFIRM)
ibm-qradar-cve20194654-info-disc (170965) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2019-4654?: CVE-2019-4654 is a low-severity vulnerability in Ibm Qradar. CVSS score: 3.7/10. Published 2020-04-15.
How severe is CVE-2019-4654?: Low severity. CVSS v3 base score is 3.7 out of 10.