Lucene search
K

35 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 2:22 a.m.49 views

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities with updates. Vulnerability Details CVEID:CVE-2020-19909 DESCRIPTION: cURL libcurl is vulnerable to a denial of service, caused by an integer overflow in...

9.8CVSS9.6AI score0.78483EPSS
Exploits8Affected Software1
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.3 views

IBM QRadar WinCollect Agent 安全漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM that collects and sends Windows event logs. A security vulnerability exists in IBM QRadar WinCollect Agent versions 10.0.0 through 10.1.12, which arises from improper validation of inputs for assumed immutabl...

5.3CVSS6.5AI score0.00357EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/14 2:21 p.m.19 views

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities Vulnerability Details CVEID:CVE-2024-8096 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass security restrictions, caused by a flaw when using...

7.5CVSS6.8AI score0.0197EPSS
Exploits2Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.6 views

PT-2024-10318 · Ibm · Ibm Qradar Wincollect Agent

Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0.0 through 10.1.12 Description: The issue is related to the improper input validation of assumed immutable data, which could allow a remote attacker to inject XML data into parameter values. This could...

5.3CVSS7.1AI score0.00357EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/11 8:43 a.m.57 views

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities in an update. Vulnerability Details CVEID:CVE-2024-6874 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive information, caused by a...

9.1CVSS7.5AI score0.66594EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/09 5:3 p.m.67 views

Security Bulletin: IBM QRadar Wincollect is using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities with updates. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: Node.js micromatch module is vulnerable to a denial of service, caused by a regular...

8.6CVSS8.8AI score0.54026EPSS
Exploits6Affected Software1
CNVD
CNVD
added 2024/03/05 12:0 a.m.21 views

IBM QRadar WinCollect Agent Resource Management Error Vulnerability

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A resource management error vulnerability exists in IBM QRadar WinCollect Agent that stems from vulnerability to server-side request forgery attacks. No detailed...

4.4CVSS4.6AI score0.00169EPSS
Exploits0References1
OSV
OSV
added 2024/03/03 4:15 p.m.3 views

CVE-2022-43880

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151...

4.4CVSS5.8AI score0.00169EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/03 12:0 a.m.3 views

IBM QRadar WinCollect Agent 资源管理错误漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A resource management error vulnerability exists in IBM QRadar WinCollect Agent that stems from vulnerability to server-side request forgery attacks. No detailed...

4.4CVSS6.7AI score0.00169EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/11/29 12:0 a.m.4 views

The vulnerability of the IBM QRadar WinCollect Agent’s event forwarding mechanism, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

3.3CVSS5.6AI score0.00595EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/11/24 12:15 a.m.2 views

CVE-2023-26279

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding. IBM X-Force ID: 248160...

7.8CVSS5.8AI score0.00217EPSS
Exploits0References2
OSV
OSV
added 2023/11/23 11:15 p.m.4 views

CVE-2021-39008

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices. IBM X-Force ID: 213551...

4.9CVSS5.8AI score0.00595EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/11/23 12:0 a.m.3 views

IBM QRadar WinCollect Agent 安全漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A code issue vulnerability exists in IBM QRadar WinCollect Agent versions 10.0 through 10.1.7 that stems from improper coding. An attacker could exploit the...

7.8CVSS6.9AI score0.00217EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/11/23 12:0 a.m.5 views

PT-2023-7274 · Ibm · Ibm Qradar Wincollect Agent

Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0 through 10.1.7 Description: The issue is related to a lack of proper output encoding or escaping in the IBM QRadar WinCollect Agent, which could allow an attacker to gain unauthorized access to...

7.8CVSS7.3AI score0.00217EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/11/23 12:0 a.m.4 views

IBM QRadar WinCollect Agent 信息泄露漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. An information disclosure vulnerability exists in IBM QRadar WinCollect Agent. The vulnerability stems from the application's inadequate protection of sensitive...

4.9CVSS6AI score0.00595EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/11/22 3:32 p.m.51 views

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities Vulnerability Details CVEID:CVE-2022-25883 DESCRIPTION: Node.js semver package is vulnerable to a denial of service, caused by a regular expression denial of...

7.8CVSS7.5AI score0.62246EPSS
Exploits2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/12 12:0 a.m.5 views

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent, related to access control deficiencies, allows attackers to increase their privileges.

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent is related to deficiencies in access control. Exploiting this vulnerability can allow attackers operating remotely to enhance their privileges...

7.6CVSS7.2AI score0.00391EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/09/08 12:0 a.m.5 views

IBM QRadar WinCollect Agent Security Vulnerability

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM that collects and sends Windows event logs. A security vulnerability exists in IBM QRadar WinCollect Agent versions 10.0 through 10.1.6, which stems from vulnerability to a local privilege escalation attack. ...

7.8CVSS6.8AI score0.00391EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/25 12:0 a.m.7 views

PT-2023-4945 · Ibm · Ibm Qradar Wincollect Agent

Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0 through 10.1.6 Description: The issue is related to insufficient access control in the IBM QRadar WinCollect Agent, which can be exploited by a remote attacker to elevate their privileges. A normal us...

7.8CVSS7.8AI score0.00391EPSS
Exploits0References9
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/24 5:54 p.m.89 views

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

Summary IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities. IBM has addressed the relevant vulnerabilities Vulnerability Details CVEID:CVE-2023-28319 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive information, caused by a use-after-free...

7.5CVSS7.4AI score0.03658EPSS
Exploits4Affected Software1
Rows per page
Query Builder