CVE-2020-5032: 
IBM QRadar SIEM vulnerability analysis and mitigation

A vulnerability was identified in IBM QRadar SIEM (CVE-2020-5032) that could allow a temporary denial of service attack when specific payloads are sent to the system. The vulnerability affects multiple versions of IBM QRadar SIEM, including versions 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 (IBM Security).

The vulnerability has been assigned a CVSS Base score of 3.1 with a vector of CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L, indicating a relatively low severity but still potentially impactful vulnerability (IBM Security).

When exploited, this vulnerability can result in a temporary denial of service condition in affected IBM QRadar SIEM systems. The impact is limited to system availability, with no compromise to confidentiality or integrity (IBM Security).

IBM has released patches to address this vulnerability. The recommended fixes include updating to QRadar/QRM/QVM 7.4.2 Patch 2, 7.4.1 Patch 2, or 7.3.3 Patch 7. For QRadar Incident Forensics/QNI, updates are available for versions 7.4.2 Patch 2, 7.4.1 Patch 2, and 7.3.3 Patch 7. No workarounds are available for this vulnerability (IBM Security).