VIR Vulnerability Intelligence Relay

CVE-2015-5044

low
Published 2015-11-08 · Modified 2026-05-06
CVSS v3
CVSS v2
3.3
VIR risk
3.3

Description

The Flow Collector in IBM Security QRadar QFLOW 7.1.x before 7.1 MR2 Patch 11 IF3 and 7.2.x before 7.2.5 Patch 4 IF3 allows remote attackers to cause a denial of service via unspecified packets.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@us.ibm.com — http://www-01.ibm.com/support/docview.wss?uid=swg21969422

Application impact
VendorProductVersionsFixed
ibmqradar_security_information_and_event_manager7.0.0
ibmqradar_security_information_and_event_manager7.0.1
ibmqradar_security_information_and_event_manager7.1.0
ibmqradar_security_information_and_event_manager7.2.0
ibmqradar_security_information_and_event_manager7.2.1
ibmqradar_security_information_and_event_manager7.2.2
ibmqradar_security_information_and_event_manager7.2.3
ibmqradar_security_information_and_event_manager7.2.4
ibmqradar_security_information_and_event_manager7.2.5

References

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.