CVE-2020-4485

MEDIUM

IBM QRadar <7.2.10 - Privilege Escalation

Title source: llm
STIX 2.1

Description

IBM QRadar 7.2.0 through 7.2.9 could allow an authenticated user to disable the Wincollect service which could aid an attacker in bypassing security mechanisms in future attacks. IBM X-Force ID: 181860.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6257885
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/181860

Scores

CVSS v3 6.5
EPSS 0.0149
EPSS Percentile 71.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (1)
ibm/qradar_security_information_and_event_manager 7.2.0 - 7.2.9
Published Aug 11, 2020
Tracked Since Feb 18, 2026