Home

Description

IBM QRadar SIEM 7.5 through 7.5 Update Pack 13 Independent Fix 01 could allow a local privileged user to perform unauthorized actions on configuration files due to improper permission assignment.

PUBLISHED Reserved 2024-12-31 | Published 2025-09-14 | Updated 2025-09-15 | Assigner ibm




LOW: 2.3CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-732 Incorrect Permission Assignment for Critical Resource

Product status

Default status
unaffected

7.5 (semver)
affected

Credits

John Zuccato, Rodney Ryan, Chris Shepherd, Vince Dragnea, Ben Goodspeed, Dawid Bak finder

References

www.ibm.com/support/pages/node/7244784 vendor-advisory patch

cve.org (CVE-2025-0164)

nvd.nist.gov (CVE-2025-0164)

Download JSON