CVE-2024-51461Allocation of Resources Without Limits or Throttling in IBM Qradar Wincollect

CWE-770Allocation of Resources Without Limits or Throttling3 documents3 sources
Severity
6.5MEDIUMNVD
CNA4.3
EPSS
0.3%
top 48.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Qradar WincollectIBM Qradar Wincollect Agent
Timeline
PublishedApr 11

Description

IBM QRadar WinCollect Agent 10.0 through 10.1.13 could allow a remote attacker to cause a denial of service by interrupting an HTTP request that could consume memory resources.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/qradar_wincollect_agent10.010.1.13
NVDibm/qradar_wincollect10.010.1.14

🔴Vulnerability Details

2
CVEList
IBM QRadar WinCollect Agent denial of service2025-04-11
GHSA
GHSA-8pph-7gjg-6jjp: IBM QRadar WinCollect Agent 102025-04-11