IBM QRadar WinCollect Agent improper output encoding
CVE-2023-26279

7.8HIGH

Key Information:

Vendor: IBM
Status: QRadar WinCollect Agent
Vendor: CVE Published:; 24 November 2023

What is CVE-2023-26279?

The IBM QRadar WinCollect Agent versions 10.0 to 10.1.7 is susceptible to exploitation by local users due to a flaw in the encoding process. This vulnerability may enable unauthorized actions, posing potential security risks to the system. Users should review their configurations and apply necessary updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

QRadar WinCollect Agent 10.0 <= 10.1.7

References

https://www.ibm.com/support/pages/node/7081403

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/213551

vdb-entry

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 24, 2023
Vulnerability Reserved
Feb 21, 2023