CVE-2021-39006
First published: Thu Jun 16 2022(Updated: )
IBM QRadar WinCollect Agent 10.0 and 10.0.1 could allow an attacker to obtain sensitive information due to missing best practices. IBM X-Force ID: 213549.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM QRadar WinCollect | =10.0 | |
| IBM QRadar WinCollect | =10.0.1 | |
| Linux Linux kernel | ||
| IBM QRadar WinCollect Agent | <=10.0 - 10.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID is CVE-2021-39006.
What is the title of this vulnerability?
The title of this vulnerability is 'IBM QRadar WinCollect Agent could allow an attacker to obtain sensitive information due to missing best practices'.
Which IBM product is affected by this vulnerability?
IBM QRadar WinCollect Agent is affected by this vulnerability.
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is medium, with a CVSS score of 5.3.
How can I fix this vulnerability?
To fix this vulnerability, it is recommended to follow the best practices provided by IBM in their support document and update to the latest version of IBM QRadar WinCollect Agent.
- agent/references
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/ibm-support
- source/IBM
- vendor/ibm
- canonical/ibm qradar wincollect
- version/ibm qradar wincollect/10.0
- version/ibm qradar wincollect/10.0.1
- vendor/linux
- canonical/linux linux kernel
- canonical/ibm qradar wincollect agent
- version/ibm qradar wincollect agent/10.0 - 10.0.1