Information Disclosure Vulnerability in IBM QRadar WinCollect Agent
CVE-2021-39006

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Qradar Wincollect Agent
Vendor: CVE Published:; 21 June 2022

Summary

An information disclosure vulnerability exists in IBM QRadar WinCollect Agent versions 10.0 and 10.0.1, which could potentially allow an attacker to access sensitive information. This vulnerability arises from the absence of certain best practice security measures, enabling unauthorized users to exploit the weakness. For further details, visit the IBM support page or check the IBM X-Force database.

Affected Version(s)

QRadar WinCollect Agent 10.0

QRadar WinCollect Agent 10.0.1

References

https://www.ibm.com/support/pages/node/6596947

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/213549

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 21, 2022
Vulnerability Reserved
Aug 16, 2021