Lucene search
IbmCVELIST:CVE-2023-38736HistorySep 08, 2023 - 6:49 p.m.
CVE-2023-38736 IBM QRadar WinCollect Agent privilege escalation
2023-09-0818:49:24
ibm
www.cve.org
3
ibm
qradar
wincollect
privilege escalation
cve-2023-38736
ibm x-force
local escalation
system permissions
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0
Percentile
5.1%
IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "QRadar WinCollect Agent",
"vendor": "IBM",
"versions": [
{
"lessThanOrEqual": "10.1.6",
"status": "affected",
"version": "10.0",
"versionType": "semver"
}
]
}
]Related
prion
prion
Privilege escalation
2023-09-08 19:15:00
ibm
ibm
nvd
nvd
CVE-2023-38736
2023-09-08 19:15:43
cve
cve
CVE-2023-38736
2023-09-08 19:15:43
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2023-38736