CVE-2016-2879

Published on: 03/01/2017 12:00:00 AM UTC

Last Modified on: 03/23/2021 11:27:16 PM UTC

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Certain versions of Qradar Security Information And Event Manager from Ibm contain the following vulnerability:

IBM QRadar 7.2 uses outdated hashing algorithms to hash certain passwords, which could allow a local user to obtain and decrypt user credentials. IBM Reference #: 1997341.

  • CVE-2016-2879 has been assigned by [email protected] to track the vulnerability - currently rated as HIGH severity.

CVSS3 Score: 7.8 - HIGH

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
LOCAL LOW LOW NONE
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
UNCHANGED HIGH HIGH HIGH

CVSS2 Score: 2.1 - LOW

Access
Vector
Access
Complexity
Authentication
LOCAL LOW NONE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
PARTIAL NONE NONE

CVE References

Description Tags Link
Security Bulletin: IBM QRadar SIEM uses broken or risky cryptographic algorithms (CVE-2016-2879) Patch
Vendor Advisory
www.ibm.com
text/html
URL Logo CONFIRM www.ibm.com/support/docview.wss?uid=swg21997341
IBM QRadar Security Information and Event Manager Local Information Disclosure Vulnerability cve.report (archive)
text/html
URL Logo BID 96502

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationIbmQradar Security Information And Event Manager7.2.0AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.1AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.2AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.3AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.4AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.5AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.6AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.7AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.0AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.1AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.2AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.3AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.4AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.5AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.6AllAllAll
ApplicationIbmQradar Security Information And Event Manager7.2.7AllAllAll
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.1:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.2:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.3:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.4:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.5:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.6:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.7:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.0:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.1:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.2:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.3:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.4:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.5:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.6:*:*:*:*:*:*:*:
  • cpe:2.3:a:ibm:qradar_security_information_and_event_manager:7.2.7:*:*:*:*:*:*:*: