Ibm

Qradar Wincollect

9 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-51461

  • EPSS 0.07%
  • Published 11.04.2025 01:13:57
  • Last modified 14.08.2025 19:21:39

IBM QRadar WinCollect Agent 10.0 through 10.1.13 could allow a remote attacker to cause a denial of service by interrupting an HTTP request that could consume memory resources.

5.3

CVE-2024-51462

  • EPSS 0.06%
  • Published 17.01.2025 03:15:07
  • Last modified 14.08.2025 01:18:35

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data.

4.4

CVE-2022-43880

  • EPSS 0.02%
  • Published 03.03.2024 16:15:49
  • Last modified 24.04.2025 14:01:17

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151.

7.8

CVE-2023-26279

  • EPSS 0.01%
  • Published 24.11.2023 00:15:10
  • Last modified 21.11.2024 07:51:03

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding. IBM X-Force ID: 248160.

4.9

CVE-2021-39008

  • EPSS 0.06%
  • Published 23.11.2023 23:15:07
  • Last modified 21.11.2024 06:18:24

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices. IBM X-Force ID: 213551.

7.8

CVE-2023-38736

  • EPSS 0.03%
  • Published 08.09.2023 19:15:43
  • Last modified 21.11.2024 08:14:08

IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542.

7.8

CVE-2023-26278

  • EPSS 0.03%
  • Published 31.05.2023 20:15:10
  • Last modified 21.11.2024 07:51:02

IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158.

7.8

CVE-2023-26277

  • EPSS 0.05%
  • Published 31.05.2023 19:15:26
  • Last modified 21.11.2024 07:51:02

IBM QRadar WinCollect Agent 10.0 though 10.1.3 could allow a local user to execute commands on the system due to execution with unnecessary privileges. IBM X-Force ID: 248156.

5.3

CVE-2021-39006

  • EPSS 0.14%
  • Published 21.06.2022 16:15:08
  • Last modified 21.11.2024 06:18:23

IBM QRadar WinCollect Agent 10.0 and 10.0.1 could allow an attacker to obtain sensitive information due to missing best practices. IBM X-Force ID: 213549.