Description
IBM Security Verify Access 20.07 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with elevated privileges.
CVSS breakdown
CVSS 3.0
Availability
High
Integrity
High
User Interaction
None
Attack Vector
Network
Privileges Required
None
Confidentiality
High
Scope
Changed
Attack Complexity
High
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / security_verify_access20.07 – 20.07