Lucene search
+L

61 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/10 5:18 p.m.15 views

Security Bulletin: IBM QRadar Wincollect agent is vulnerable to denial of service ( CVE-2024-51461)

Summary IBM QRadar Wincollect agent is vulnerable to denial of service. The vulnerability have been addressed in the latest update. Vulnerability Details CVEID:CVE-2024-51461 DESCRIPTION: IBM QRadar WinCollect Agent could allow a remote attacker to cause a denial of service by interrupting an HTT...

6.5CVSS6.9AI score0.00387EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/28 12:0 a.m.9 views

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent, related to the modification of expected data, allows a perpetrator to gain access to modify the data.

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent is related to modifications to expected data. Exploiting this vulnerability could allow attackers to gain access to and modify data...

4CVSS5.5AI score0.00357EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/01/17 3:15 a.m.3 views

CVE-2024-51462

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data...

5.3CVSS5.8AI score0.00357EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/17 2:16 a.m.6 views

CVE-2024-51462 IBM QRadar WinCollect Agent data manipulation

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data...

4CVSS4.3AI score0.00357EPSS
Exploits0References1
CVE
CVE
added 2025/01/17 2:16 a.m.65 views

CVE-2024-51462

IBM QRadar WinCollect Agent (Windows) versions 10.0.0–10.1.12 are affected by CVE-2024-51462 due to improper input validation of assumed immutable data, enabling a remote attacker to inject XML data into parameter values and potentially modify data. Remediation is to upgrade to WinCollect Standal...

5.3CVSS4.3AI score0.00357EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/17 2:16 a.m.18 views

CVE-2024-51462 IBM QRadar WinCollect Agent data manipulation

IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow a remote attacker to inject XML data into parameter values due to improper input validation of assumed immutable data...

4CVSS0.00357EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.5 views

IBM QRadar WinCollect Agent 安全漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM that collects and sends Windows event logs. A security vulnerability exists in IBM QRadar WinCollect Agent versions 10.0.0 through 10.1.12, which arises from improper validation of inputs for assumed immutabl...

5.3CVSS6.5AI score0.00357EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.5 views

PT-2025-16022 · Ibm · Ibm Qradar Wincollect Agent

Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0 through 10.1.13 Description: The issue allows a remote attacker to cause a denial of service by interrupting an HTTP request, which could consume memory resources. Recommendations: For versions 10.0...

6.5CVSS6.5AI score0.00387EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.6 views

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent, related to uncontrolled resource consumption, allows a perpetrator to trigger a service failure.

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow attackers to cause service interruptions...

4.4CVSS5.5AI score0.00169EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2024/03/05 12:0 a.m.21 views

IBM QRadar WinCollect Agent Resource Management Error Vulnerability

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A resource management error vulnerability exists in IBM QRadar WinCollect Agent that stems from vulnerability to server-side request forgery attacks. No detailed...

4.4CVSS4.6AI score0.00169EPSS
Exploits0References1
OSV
OSV
added 2024/03/03 4:15 p.m.3 views

CVE-2022-43880

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151...

4.4CVSS5.8AI score0.00169EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/03 12:0 a.m.6 views

IBM QRadar WinCollect Agent 资源管理错误漏洞

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A resource management error vulnerability exists in IBM QRadar WinCollect Agent that stems from vulnerability to server-side request forgery attacks. No detailed...

4.4CVSS6.7AI score0.00169EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/12/01 12:0 a.m.7 views

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent lies in the lack of mechanisms for encoding or shielding output data. This allows attackers to perform arbitrary actions.

The vulnerability of the event forwarding mechanism in IBM QRadar WinCollect Agent is related to the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

3.3CVSS7.2AI score0.00217EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2023/11/27 12:0 a.m.7 views

IBM QRadar WinCollect Agent Information Disclosure Vulnerability (CNVD-2023-9528785)

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. An information disclosure vulnerability exists in IBM QRadar WinCollect Agent. The vulnerability stems from the application's inadequate protection of sensitive...

4.9CVSS6AI score0.00595EPSS
Exploits0References1
CNVD
CNVD
added 2023/11/27 12:0 a.m.8 views

IBM QRadar WinCollect Agent Code Issue Vulnerability

IBM QRadar WinCollect Agent is an agent program from International Business Machines IBM for collecting and sending Windows event logs. A code issue vulnerability exists in IBM QRadar WinCollect Agent versions 10.0 through 10.1.7 that stems from improper coding. An attacker could exploit the...

7.8CVSS6.6AI score0.00217EPSS
Exploits0References1
NVD
NVD
added 2023/11/24 12:15 a.m.31 views

CVE-2023-26279

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding. IBM X-Force ID: 248160...

7.8CVSS0.00217EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/11/23 11:39 p.m.31 views

CVE-2023-26279 IBM QRadar WinCollect Agent improper output encoding

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding. IBM X-Force ID: 248160...

3.3CVSS7.3AI score0.00217EPSS
Exploits0References2
NVD
NVD
added 2023/11/23 11:15 p.m.29 views

CVE-2021-39008

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices. IBM X-Force ID: 213551...

4.9CVSS0.00595EPSS
Exploits0References2
OSV
OSV
added 2023/11/23 11:15 p.m.5 views

CVE-2021-39008

IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices. IBM X-Force ID: 213551...

4.9CVSS5.8AI score0.00595EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/23 12:0 a.m.6 views

PT-2023-7274 · Ibm · Ibm Qradar Wincollect Agent

Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0 through 10.1.7 Description: The issue is related to a lack of proper output encoding or escaping in the IBM QRadar WinCollect Agent, which could allow an attacker to gain unauthorized access to...

7.8CVSS7.3AI score0.00217EPSS
Exploits0References6
Rows per page
Query Builder