PT-2019-16849 · Ibm · Ibm Workload Scheduler Distributed

Davide Cioccia

Published

2019-10-16

Updated

2021-06-07

CVE-2019-4031

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Workload Scheduler Distributed versions 9.2 through 9.5

Description The issue allows a local user to write files as root in the file system, potentially enabling the attacker to gain root privileges.

Recommendations For versions 9.2 through 9.5, update to a version that contains a fix for this issue to prevent local users from writing files as root and gaining elevated privileges.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-4031

Affected Products

Ibm Workload Scheduler Distributed

PT-2019-16849 · Ibm · Ibm Workload Scheduler Distributed

CVE-2019-4031

Related Identifiers

Affected Products

References · 4