Detections
Analytics

IBM QRadar 7.5.x < 7.5.0 UP14 IF2 Information Disclosure (7253664)

low Nessus Plugin ID 282529

Language:

Synopsis

The remote host is affected by an information disclosure vulnerability.

Description

The instance of IBM QRadar installed on the remote host is version 7.5.x prior to 7.5.0 UP14 IF2, and is therefore affected by an information disclosure vulnerability involving exposure of directory information, as disclosed in the IBM Security Bulletin 7253664.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to IBM QRadar 7.5.0 UP14 IF2 or later.

See Also

http://www.nessus.org/u?beaabc04

Plugin Details

Severity: Low

ID: 282529

File Name: ibm_qradar_7253664.nasl

Version: 1.1

Type: local

Agent: unix

Family: Misc.

Published: 1/9/2026

Updated: 1/9/2026

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.9

CVSS v2

Risk Factor: Medium

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS Score Source: CVE-2024-56464

CVSS v3

Risk Factor: Low

Base Score: 2.7

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Vulnerability Information

CPE: cpe:/a:ibm:qradar_security_information_and_event_manager

Required KB Items: installed_sw/IBM QRadar, Host/uname

Excluded KB Items: Host/MacOSX/Version

Reference Information

CVE: CVE-2024-56464

IAVA: 2026-A-0010