VDB
CISA-2025-33117
CISA-2025-33117
PUBLISHED
CVSS 9.1 CRITICAL
Reported by ibm · Published June 19, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 could allow a privileged user to modify configuration files that would allow the upload of a malicious autoupdate file to execute arbitrary commands.
Risk Scores
CVSS 3.1
9.1
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | QRadar SIEM | 7.5 |
| IBM | QRadar SIEM | 7.5, 7.5 |
Timeline
- Jun 19, 2025 CVE Published
- Feb 26, 2026 CVE Updated