PT-2023-13232 · Ibm · Ibm Security Directory Suite Va
Ben Goodspeed
+8
·
Published
2023-06-15
·
Updated
2023-06-21
·
CVE-2022-33163
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security Directory Suite VA version 8.0.1
Description
The issue concerns the specification of permissions for a security-critical resource, allowing it to be read or modified by unintended actors.
Recommendations
For IBM Security Directory Suite VA version 8.0.1, consider restricting access to the security-critical resource until a proper fix is applied. As a temporary workaround, review and adjust the permissions to ensure they align with the intended access controls.
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Directory Suite Va