CVE-2019-4241

3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 84.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Pureapplication System
Timeline
PublishedJun 26
Latest updateMay 24

Description

IBM PureApplication System 2.2.3.0 through 2.2.5.3 could allow an authenticated user with local access to bypass authentication and obtain administrative access. IBM X-Force ID: 159467.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDibm/pureapplication_system2.2.3.02.2.5.3
CVEListV5ibm/pureapplication_system8 versions+7

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-25hm-6gxf-m348: IBM PureApplication System 22022-05-24
CVEList
CVE-2019-4241: IBM PureApplication System 22019-06-26
CVE-2019-4241 (HIGH CVSS 7.8) | IBM PureApplication System 2.2.3.0 | cvebase.io