Attackers can crash IBM's IT security solution QRadar SIEM
Important security updates close several vulnerabilities in IBM QRadar SIEM. One vulnerability is considered critical.
(Image: VideoFlow/Shutterstock.com)
Attackers can exploit a total of eleven security vulnerabilities in IBM QRadar SIEM. The IT security solution is actually supposed to protect PCs from attacks. However, if administrators do not install the security patches, it becomes an entry point for attacks itself.
DoS attacks
IBM lists further information on the vulnerabilities in a security advisory. It contains no indications that attackers are already exploiting the vulnerabilities. However, that could change quickly. Therefore, administrators must ensure that the security update IBM QRadar SIEM 7.5.0 UP14 IF05 is installed. Otherwise, attackers can attack systems. The developers assure that only version 7.5.0 is vulnerable.
A “critical” vulnerability (CVE-2025-68615) is considered the most dangerous. Here, attackers can use specially crafted requests to the vulnerable net-snmp component to trigger a memory error. This leads to crashes. Under these conditions, malicious code can often also gain access to systems.
Videos by heise
The remaining vulnerabilities are classified as “high” threat level (e.g., CVE-2025-13601). Successful attacks at these points also trigger memory errors.
Most recently, IBM closed several vulnerabilities in App Connect Enterprise at the end of February.
(des)
