10.1.6

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

ibm

NVD

Published: 2023-09-08

Updated: 2023-09-13

Summary

IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Qradar Wincollect 10.0 IBM Qradar Wincollect 10.0.1 IBM Qradar Wincollect 10.1.6	3

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/262542
https://www.ibm.com/support/pages/node/7030703