Privilege Escalation via Command Injection in IBM QRadar SIEM

Privilege Escalation via Command Injection in IBM QRadar SIEM

CVE-2016-2876 · HIGH Severity

AV:N/AC:M/AU:S/C:C/I:C/A:C

IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 executes unspecified processes at an incorrect privilege level, which makes it easier for remote authenticated users to obtain root access by leveraging a command-injection issue.

Learn more about our User Device Pen Test.