IBM Security ReaQta EDR Improper SSL Certificate Validation Vulnerability Allowing Unauthorized Actions

A vulnerability in IBM Security ReaQta EDR version 3.12 has been identified, allowing attackers to perform unauthorized actions due to improper validation of SSL certificates. This flaw could enable attackers to bypass security restrictions or spoof trusted entities by interfering with the communication path between the host and client.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed within the application, potentially allowing attackers to bypass security controls or manipulate data.

Remediation

Users are advised to update to IBM Security QRadar EDR version 3.12.17. This update can be applied automatically, or users can choose to approve the update manually. For more information on the manual installation process, refer to the IBM Security QRadar EDR installation guide.