3 matches found
Security Bulletin: IBM QRadar Wincollect is vulnerable to improper access control (CVE-2020-4485, CVE-2020-4486)
Summary IBM QRadar Wincollect agents could allow authenticated users to bypass restrictions to delete arbitrary files or disable the Wincollect service. Vulnerability Details CVEID: CVE-2020-4485 DESCRIPTION: IBM QRadar could allow an authenticated user to disable the Wincollect service which cou...
CVE-2020-4485
IBM QRadar 7.2.0 through 7.2.9 could allow an authenticated user to disable the Wincollect service which could aid an attacker in bypassing security mechanisms in future attacks. IBM X-Force ID: 181860...
CVE-2020-4485
CVE-2020-4485 affects IBM QRadar Wincollect agents 7.2.0–7.2.9. A authenticated user could bypass security controls by disabling the Wincollect service, aiding future attacks. The IBM bulletin confirms improper access control as the issue and notes the impact on security mechanisms. The affected ...