PT-2020-7332 · Ibm · Ibm Sterling External Authentication Server
Published
2020-02-11
·
Updated
2020-02-13
·
CVE-2013-0517
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
IBM Sterling External Authentication Server versions 2.2.0 through 2.4.1
Description:
A Command Execution issue exists via an unspecified OS command, which could let a local malicious user execute arbitrary code.
Recommendations:
For versions 2.2.0 through 2.4.1, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Sterling External Authentication Server