CVE-2024-28767

Name of the Vulnerable Software and Affected Versions IBM Security Directory Integrator versions 7.2.0 through 7.2.0.13 IBM Security Directory Integrator versions 10.0.0 through 10.0.3

Description The issue allows a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. This can lead to unauthorized access and control of the system.

Recommendations For versions 7.2.0 through 7.2.0.13, update to a version outside of this range to mitigate the risk. For versions 10.0.0 through 10.0.3, update to a version outside of this range to mitigate the risk. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.