Skip to main content

Security Qradar Edr EUVDEUVD-2024-55619

| CVE-2024-45636 MEDIUM
Plaintext Storage of a Password (CWE-256)
2026-06-11 ibm GHSA-wxmc-rhr3-hx2w
4.4
CVSS 3.1 · NVD
Share

Severity by source

Vendor (ibm) PRIMARY
MEDIUM
qualitative
NVD
4.4 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Primary rating from Vendor (ibm).

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
CVSS changed
Jun 16, 2026 - 16:37 NVD
4.1 (MEDIUM) 4.4 (MEDIUM)
CVE Published
Jun 11, 2026 - 15:10 nvd
MEDIUM 4.4

DescriptionNVD

IBM Security QRadar EDR 3.12 through 3.12.24 stores user credentials in plain text which can be read by a local privileged user.

AnalysisAI

IBM Security QRadar EDR 3.12 through 3.12.24 stores user credentials in plain text which can be read by a local privileged user. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-256. IBM Security QRadar EDR 3.12 through 3.12.24 stores user credentials in plain text which can be read by a local privileged user. Affected products include: Ibm Security Qradar Edr. Version information: through 3.12.24.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2023-33861 MEDIUM
6.5 May 20

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication pat

CVE-2024-45641 MEDIUM
6.5 May 20

IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to improper SSL certificate val

CVE-2025-36376 MEDIUM
6.3 Feb 17

Security Qradar Edr versions up to 3.12.23 is affected by insufficient session expiration (CVSS 6.3).

CVE-2024-45643 MEDIUM
5.9 Mar 14

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt

CVE-2024-45642 MEDIUM
5.3 Nov 14

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. Rated medium severity (CVSS 5.3), this vulnerability is

CVE-2024-45099 MEDIUM
4.8 Nov 14

IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. Rated medium severity (CVSS 4.8), this vulnerability is

CVE-2024-45644 MEDIUM
4.7 Mar 19

IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types that can be automatical

CVE-2024-45638 MEDIUM
4.1 Mar 14

IBM Security QRadar 3.12 EDR stores user credentials in plain text which can be read by a local privileged user. Rated m

CVE-2024-45654 MEDIUM
4.3 Jan 19

IBM Security ReaQta 3.12 could allow an authenticated user to perform unauthorized actions due to reliance on untrusted

CVE-2024-45640 MEDIUM
5.3 Jan 07

IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in further attacks against

CVE-2024-45100 MEDIUM
4.9 Jan 07

IBM Security ReaQta 3.12 could allow a privileged user to cause a denial of service by sending multiple administration r

Share

EUVD-2024-55619 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy