Nixpkgs security tracker

Untriaged

Permalink CVE-2024-56462

7.2 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): High (H)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): High (H)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): High (H)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): High (H)
Modified Availability (MA): High (H)

created 4 days, 19 hours ago Activity log

Created suggestion 4 days, 19 hours ago

IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating system.

References

https://www.ibm.com/support/pages/node/7273957 patchvendor-advisory

Affected products

QRadar

=<7.5.0 UP15 Interim Fix 002

Matching in nixpkgs

pkgs.python312Packages.pysigma-backend-qradar

Library to support Qradar for pySigma

nixos-25.11 0.3.3
- nixos-25.11-small 0.3.3
- nixpkgs-25.11-darwin 0.3.3

pkgs.python313Packages.pysigma-backend-qradar

Library to support Qradar for pySigma

nixos-unstable 0.3.3
- nixpkgs-unstable 0.3.3
- nixos-unstable-small 0.3.3
nixos-25.11 0.3.3
- nixos-25.11-small 0.3.3
- nixpkgs-25.11-darwin 0.3.3

pkgs.python314Packages.pysigma-backend-qradar

Library to support Qradar for pySigma

nixos-unstable 0.3.3
- nixpkgs-unstable 0.3.3
- nixos-unstable-small 0.3.3

Package maintainers

@fabaff Fabian Affolter <mail@fabian-affolter.ch>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.python312Packages.pysigma-backend-qradar

pkgs.python313Packages.pysigma-backend-qradar

pkgs.python314Packages.pysigma-backend-qradar

Package maintainers