PT-2023-6698 · Ibm · Ibm Spectrum Virtualize
Wolfgang Ettlinger
·
Published
2023-01-26
·
Updated
2023-03-03
·
CVE-2022-43873
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM Spectrum Virtualize versions 8.2 through 8.5
Description
The issue is related to insufficient protection of internal data in the graphical user interface of the software, which can be exploited by an authenticated user to execute arbitrary code and escalate their privileges on the system.
Recommendations
For IBM Spectrum Virtualize versions 8.2 through 8.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Spectrum Virtualize