CVE-2023-47146: 
IBM QRadar SIEM vulnerability analysis and mitigation

IBM Qradar SIEM 7.5 vulnerability (CVE-2023-47146) was identified and disclosed on October 31, 2023. This security flaw affects IBM Qradar Security Information and Event Manager version 7.5.0 and its update packs. The vulnerability allows privileged users to obtain sensitive domain information due to data being misidentified (NVD, CVE).

The vulnerability has been assigned a CVSS v3.1 base score of 6.5 (Medium) by NIST with a vector string of CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, while IBM Corporation rated it at 4.9 (Medium) with a vector string of CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N. The vulnerability is classified under CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor) (NVD).

The vulnerability primarily impacts data confidentiality, allowing privileged users to access sensitive domain information that they should not have access to. There are no reported impacts on system integrity or availability (NVD).

IBM has released patches to address this vulnerability. Users are advised to update their Qradar SIEM installations to the latest version that includes the security fix (IBM Advisory).