Improper Access Vulnerability in IBM PowerHA SystemMirror for i
CVE-2024-55896

5.4MEDIUM

Key Information:

Vendor: IBM
Vendor: CVE Published:; 3 January 2025

Summary

The vulnerability in IBM PowerHA SystemMirror for i versions 7.4 and 7.5 arises from improper restrictions when rendering content in iFrames. This flaw could enable an attacker to exploit the system by gaining unauthorized access, leading to the execution of unauthorized actions. Organizations using affected versions are advised to assess their security posture and implement appropriate mitigations to safeguard against potential exploitation.

References

https://www.ibm.com/support/pages/node/7180036

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jan 3, 2025

Collectors

NVD Database