CVE-2025-0164

LOW

2.3

Description

IBM QRadar SIEM 7.5 through 7.5 Update Pack 13 Independent Fix 01 could allow a local privileged user to perform unauthorized actions on configuration files due to improper permission assignment.

CVE Details

CVSS v3.1 Score2.3

SeverityLOW

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Attack VectorLOCAL

ComplexityLOW

Privileges RequiredHIGH

User InteractionNONE

Published9/14/2025

Last Modified12/15/2025

Sourcenvd

Honeypot Sightings0

Affected Products

ibm:qradar_security_information_and_event_manager

Weaknesses (CWE)

CWE-732

References

https://www.ibm.com/support/pages/node/7244784(psirt@us.ibm.com)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.