Description
IBM Security Verify Access Docker 10.0.0 could allow a remote priviled user to upload arbitrary files with a dangerous file type that could be excuted by an user. IBM X-Force ID: 200600.
CVSS breakdown
CVSS 3.0
Attack Vector
Adjacent
Availability
High
Attack Complexity
Low
Scope
Unchanged
Integrity
High
Confidentiality
High
User Interaction
Required
Privileges Required
High
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / security_verify_access_docker10.0.0 – 10.0.0