Description

IBM Security Verify Access Docker 10.0.0 could allow a remote priviled user to upload arbitrary files with a dangerous file type that could be excuted by an user. IBM X-Force ID: 200600.

Related CPE's

a

ibm

security_verify_access

10.0.0

Vulnerable

a

docker

docker

-

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/200600

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/6471895

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/200600

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/6471895

PatchVendor Advisory

Weaknesses

[email protected]

Primary
CWE-434

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

6.8 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-07-15T16:15:09.153Z

4 years ago

Last modified

2024-11-21T05:01:39.663Z

1 year ago