CVE-2023-30997

Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain root access due to improper access controls. IBM X-Force ID: 254638.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

ibm / security_verify_access_docker10.0.0.0 – 10.0.0.0
ibm / security_verify_access_docker10.0.7.1 – 10.0.7.1

References

MISChttps://www.ibm.com/support/pages/node/7158790
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/254638