PT-2023-6698 · Ibm · Ibm Spectrum Virtualize

Wolfgang Ettlinger

Publicado

2023-01-26

Atualizado

2023-03-03

CVE-2022-43873

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM Spectrum Virtualize versions 8.2 through 8.5

Description The issue is related to insufficient protection of internal data in the graphical user interface of the software, which can be exploited by an authenticated user to execute arbitrary code and escalate their privileges on the system.

Recommendations For IBM Spectrum Virtualize versions 8.2 through 8.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

BDU:2023-07468

CVE-2022-43873

Produtos afetados

Ibm Spectrum Virtualize

PT-2023-6698 · Ibm · Ibm Spectrum Virtualize

CVE-2022-43873

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7