Wednesday, October 28, 2020

Security Bulletin: IBM QRadar Wincollect is vulnerable to improper access control (CVE-2020-4485, CVE-2020-4486)

Oct 28, 2020 8:00 pm EDT

Categorized: High Severity

Share this post:

IBM QRadar Wincollect agents could allow authenticated users to bypass restrictions to delete arbitrary files or disable the Wincollect service.

Affected product(s) and affected version(s):

 

Affected Product(s) Version(s)
IBM QRadar Wincollect  7.2.0 – 7.2.9

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6257885



from IBM Product Security Incident Response Team https://ift.tt/2JfMOYe

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.