PT-2019-16892 · Ibm · Ibm Spectrum Protect Server+1

Sébastien Charbonnier

Publicado

2019-07-02

Atualizado

2022-12-09

CVE-2019-4088

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Spectrum Protect Servers versions 7.1 through 8.1 IBM Spectrum Protect Storage Agents versions 7.1 through 8.1

Description A local attacker could gain elevated privileges on the system by loading a specially crafted library loaded by the dsmqsan module. This could allow the attacker to gain root privileges on the vulnerable system.

Recommendations For IBM Spectrum Protect Servers versions 7.1 through 8.1, consider restricting access to the dsmqsan module until a patch is available. For IBM Spectrum Protect Storage Agents versions 7.1 through 8.1, consider restricting access to the dsmqsan module until a patch is available.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2019-4088

Produtos afetados

Ibm Spectrum Protect Server

Ibm Spectrum Protect Storage Agents

PT-2019-16892 · Ibm · Ibm Spectrum Protect Server+1

CVE-2019-4088

Identificadores relacionados

Produtos afetados

Referências · 4