3 matches found
CVE-2023-38736
Consolidated details from IBM and security trackers confirm CVE-2023-38736 affects IBM QRadar WinCollect Agent versions 10.0–10.1.6 when installed to run as ADMIN or SYSTEM. The vulnerability enables local privilege escalation from a non-privileged user to SYSTEM permissions. Remediation in the p...
CVE-2023-38736 IBM QRadar WinCollect Agent privilege escalation
IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542...
Security Bulletin: IBM QRadar WinCollect Agent is vulnerable to a local escalation of privilege attack in some configurations (CVE-2023-38736)
Summary IBM QRadar WinCollect Agent when installed to run as Admin or System, or with Admin or System privileges, is vulnerable to a local escalation of privilege attack that a non-privileged user could utilize to gain System permissions. IBM has addressed the relevant vulnerability. Vulnerabilit...