CVE-2022-43880 – IBM QRadar WinCollect Agent
https://notcve.org/view.php?id=CVE-2022-43880
IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151. • https://exchange.xforce.ibmcloud.com/vulnerabilities/240151 https://www.ibm.com/support/pages/node/6980843 • CWE-400: Uncontrolled Resource Consumption •
CVE-2023-26279 – IBM QRadar WinCollect Agent improper output encoding
https://notcve.org/view.php?id=CVE-2023-26279
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding. IBM X-Force ID: 248160. IBM QRadar WinCollect Agent 10.0 a 10.1.7 podría permitir que un usuario local realice acciones no autorizadas debido a una codificación incorrecta. ID de IBM X-Force: 248160. • https://exchange.xforce.ibmcloud.com/vulnerabilities/213551 https://www.ibm.com/support/pages/node/7081403 • CWE-116: Improper Encoding or Escaping of Output •
CVE-2021-39008 – IBM QRadar WinCollect Agent information disclosure
https://notcve.org/view.php?id=CVE-2021-39008
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices. IBM X-Force ID: 213551. IBM QRadar WinCollect Agent 10.0 a 10.1.7 podría permitir que un usuario privilegiado obtenga información confidencial debido a la falta de mejores prácticas. ID de IBM X-Force: 213551. • https://exchange.xforce.ibmcloud.com/vulnerabilities/213551 https://www.ibm.com/support/pages/node/7081403 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2023-38736 – IBM QRadar WinCollect Agent privilege escalation
https://notcve.org/view.php?id=CVE-2023-38736
IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542. IBM QRadar WinCollect Agent 10.0 a 10.1.6, cuando se instala para ejecutarse como ADMIN o SYSTEM, es vulnerable a una escalada local de ataque de privilegios que un usuario normal podría utilizar para obtener permisos de SYSTEM. ID de IBM X-Force: 262542. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262542 https://www.ibm.com/support/pages/node/7030703 •
CVE-2023-26278 – IBM QRadar WinCollect Agent privilege escalation
https://notcve.org/view.php?id=CVE-2023-26278
IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158. • https://exchange.xforce.ibmcloud.com/vulnerabilities/248158 https://www.ibm.com/support/pages/node/6999341 •