PT-2021-22333 · Ibm · Ibm Spss Statistics

Ido Hoorvitch

Published

2021-11-17

Updated

2021-11-19

CVE-2021-38959

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions IBM SPSS Statistics for Windows versions 24.0 through 28.0

Description The issue allows a local user to cause a denial of service by writing arbitrary files to admin protected directories on the system.

Recommendations For versions 24.0 through 28.0, consider restricting write access to admin protected directories to prevent arbitrary file writing until a patch is available.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2021-38959

Affected Products

Ibm Spss Statistics

PT-2021-22333 · Ibm · Ibm Spss Statistics

CVE-2021-38959

Weakness Enumeration

Related Identifiers

Affected Products

References · 4