CVE-2023-38736 — Vulnetix

CVE-2023-38736 PUBLISHED CVSS 7.5 HIGH

IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542.

EPSS 0.03% · 10.6th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.03%

10.6th percentile

Affected Products

Vendor	Product	Versions
ibm	qradar_wincollect	10.0
IBM	QRadar WinCollect Agent	10.0
ibm	qradar_wincollect	10.0

Timeline

Sep 8, 2023 CVE Published
Sep 9, 2023 EPSS Score
Oct 11, 2023 EPSS Score
Nov 13, 2023 EPSS Score
Dec 15, 2023 EPSS Score
Jan 17, 2024 EPSS Score
Feb 18, 2024 EPSS Score
Mar 22, 2024 EPSS Score
Apr 23, 2024 EPSS Score
May 26, 2024 EPSS Score
Jun 27, 2024 EPSS Score
Jul 30, 2024 EPSS Score

References

https://www.ibm.com/support/pages/node/7030703 vendor-advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/262542 vdb
https://www.ibm.com/support/pages/node/7030443 advisory
https://www.ibm.com/support/pages/node/7030442 advisory
https://nvd.nist.gov/vuln/detail/CVE-2023-38736 advisory

Open in Interactive Console →