Description

IBM Security Verify Access Docker 10.0.0 could allow a remote priviled user to upload arbitrary files with a dangerous file type that could be excuted by an user. IBM X-Force ID: 200600.

Related CPE's

a

ibm

security_verify_access

10.0.0

Vulnerable

a

docker

docker

-

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/200600

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/6471895

PatchVendor Advisory

Weaknesses

[email protected]

Primary
CWE-434

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

6.8 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-07-15T18:15:09.153

3 years ago

Last modified

2021-09-29T16:12:09.137

3 years ago