Local User Privilege Escalation in IBM Spectrum Protect Client
CVE-2021-20532

7.4HIGH

Key Information:

Vendor
IBM
Vendor
CVE Published:
26 April 2021

Summary

A vulnerability in IBM Spectrum Protect Client allows a local user to escalate their privileges due to insecure directory permissions. This poses a risk for unauthorized access and control over the system. Users of affected versions should urgently review their security configurations and apply necessary patches.

Affected Version(s)

Spectrum Protect for Virtual Environments 8.1.0.0

Spectrum Protect for Virtual Environments 8.1.11.0

References

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.