CVE-2024-38335 MEDIUM

CVE-2024-38335: IBM Security QRadar Network Threat Analytics denial of service

Vendor Ibm
Product Security QRadar Network Threat Analytics
Weakness CWE-770 · Uncontrolled resource consumption
Published July 22, 2025
Last update August 18, 2025

CVSS base score

4.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required High
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

IBM Security QRadar Network Threat Analytics 1.0.0 through 1.3.1 could allow a privileged user to cause a denial of service due to improper allocation of resources.

Key dates

02Disclosure timeline

July 22, 2025 CVE published
August 18, 2025 Record updated