CVE-2023-38267
published 2024-01-11CVE-2023-38267: IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to possibly elevate their privileges due to sensitive configuration information being exposed. IBM X-Force ID: 260584.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_verify_access | >= 10.0.0.0 < 10.0.0.7 | 10.0.0.7 |
| ibm | security_verify_access_appliance | 10.0.0.0 – 10.0.6.1 | — |
| ibm | security_verify_access_docker | >= 10.0.0.0 < 10.0.0.7 | 10.0.0.7 |
| ibm | security_verify_access_docker | 10.0.0.0 – 10.0.6.1 | — |