PT-2019-9302 · Ibm · Ibm Security Privileged Identity Manager Virtual Appliance
Publicado
2019-04-02
·
Atualizado
2019-10-09
·
CVE-2018-1640
CVSS v2.0
9.0
Alta
| Vetor | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM Security Privileged Identity Manager Virtual Appliance version 2.2.1
Description
The issue allows a remote authenticated attacker to execute arbitrary commands on the system by sending a specially-crafted request. This enables the attacker to exploit the system and execute commands.
Recommendations
For IBM Security Privileged Identity Manager Virtual Appliance version 2.2.1, update to a version that includes a fix for this issue, as no specific workaround or mitigation is provided in the available information.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Security Privileged Identity Manager Virtual Appliance