Rewterz Threat Advisory – CVE-2023-20884 – VMware Workspace ONE Access and Identity Manager Vulnerability
June 1, 2023Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
June 1, 2023Rewterz Threat Advisory – CVE-2023-20884 – VMware Workspace ONE Access and Identity Manager Vulnerability
June 1, 2023Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
June 1, 2023Severity
High
Analysis Summary
CVE-2023-26278 CVSS:8.2
IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system.
CVE-2023-26277 CVSS:7.8
IBM QRadar WinCollect Agent 10.0 though 10.1.3 could allow a local user to execute commands on the system due to execution with unnecessary privileges.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-26278
- CVE-2023-26277
Affected Vendors
IBM
Affected Products
- IBM QRadar WinCollect Agent 10.0
- IBM QRadar WinCollect Agent 10.1.3
Remediation
Refer to IBM Security Bulletin 6999341 for patch, upgrade or suggested workaround information.