Privilege Escalation Vulnerability in IBM Cloud Pak for Applications
CVE-2021-20423
8.8HIGH
Summary
IBM Cloud Pak for Applications version 4.3 contains a vulnerability that enables authenticated users to gain escalated privileges due to improper handling of application permissions. This flaw may allow unauthorized access to sensitive features and functions within the application, which can compromise the security and integrity of the system. Addressing this issue is crucial for maintaining robust security within IBM Cloud Pak for Applications.
Affected Version(s)
Cloud Pak for Applications 4.3
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved