Vulnerabilities > IBM > Qradar Wincollect > 10.1.6

DATE CVE VULNERABILITY TITLE RISK
2023-11-24 CVE-2023-26279 Improper Encoding or Escaping of Output vulnerability in IBM Qradar Wincollect 10.0/10.0.1/10.1.6
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized actions due to improper encoding.
local
low complexity
ibm CWE-116
7.8
7.8
2023-11-23 CVE-2021-39008 Unspecified vulnerability in IBM Qradar Wincollect 10.0/10.0.1/10.1.6
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain sensitive information due to missing best practices.
network
low complexity
ibm
4.9
4.9
2023-09-08 CVE-2023-38736 Unspecified vulnerability in IBM Qradar Wincollect 10.0/10.0.1/10.1.6
IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions.
local
low complexity
ibm
7.8
7.8