IBM Security Access Manager Vulnerability Allows Malicious Package Installation
CVE-2023-38370
7.5HIGH
Summary
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under certain configurations, could allow a user on the network to install malicious packages. IBM X-Force ID: 261197.
Affected Version(s)
Security Access Manager Docker <= 10.0.7.1
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database