PT-2023-2982 · Ibm · Ibm Qradar Wincollect Agent
Ben Goodspeed
+8
·
Published
2023-05-08
·
Updated
2023-06-07
·
CVE-2023-26278
CVSS v3.1
8.2
High
| Vector | AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM QRadar WinCollect Agent versions 10.0 through 10.1.3
Description
The issue is related to insufficient access control in the IBM QRadar WinCollect Agent, which could allow a local authenticated attacker to gain elevated privileges on the system.
Recommendations
For IBM QRadar WinCollect Agent versions 10.0 through 10.1.3, update to a version that addresses the insufficient access control issue to prevent privilege escalation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Qradar Wincollect Agent