CVE-2016-2872 (qradar_security_information_and_event_manager, security_qradar_incident_forensics)

CVE-2016-2872 (qradar_security_information_and_event_manager, security_qradar_incident_forensics)

Directory traversal vulnerability in IBM Security QRadar SIEM 7.2.x before 7.2.7 and QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to read arbitrary files via a crafted URL.

Source: CVE-2016-2872 (qradar_security_information_and_event_manager, security_qradar_incident_forensics)