CVE-2022-22480: 
IBM QRadar SIEM vulnerability analysis and mitigation

CVE-2022-22480 affects IBM QRadar SIEM versions 7.4.0 through 7.4.3 Fix Pack 6 and 7.5.0 through 7.5.0 Update Pack 2. The vulnerability relates to data node rebalancing not functioning correctly when using encrypted hosts, which could lead to information disclosure. The vulnerability was disclosed on September 29, 2022 (IBM Security).

The vulnerability has a CVSS Base Score of 5.3 with vector CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N. This indicates that the vulnerability requires adjacent network access, has high attack complexity, needs no privileges, requires no user interaction, has a scope that's unchanged, with high confidentiality impact but no impact on integrity or availability (IBM Security).

The vulnerability could result in information disclosure due to data node rebalancing not functioning correctly when using encrypted hosts (IBM Security).

IBM has released patches to address this vulnerability. Users should upgrade to QRadar SIEM version 7.4.3 Fix Pack 7 for 7.4 installations, or version 7.5.0 Update Pack 3 for 7.5 installations. No workarounds are available (IBM Security).