Описание
IBM Sterling Connect:Direct for UNIX 4.2.0, 4.3.0, and 6.0.0 could allow a user with restricted sudo access on a system to manipulate CD UNIX to gain full sudo access. IBM X-Force ID: 152532.
Ссылки
- PatchVendor Advisory
- VDB EntryVendor Advisory
- PatchVendor Advisory
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:sterling_connect\:direct:4.2.0:*:*:*:*:unix:*:*
cpe:2.3:a:ibm:sterling_connect\:direct:4.3.0:*:*:*:*:unix:*:*
cpe:2.3:a:ibm:sterling_connect\:direct:6.0.0:*:*:*:*:unix:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.7
github
больше 3 лет назад
IBM Sterling Connect:Direct for UNIX 4.2.0, 4.3.0, and 6.0.0 could allow a user with restricted sudo access on a system to manipulate CD UNIX to gain full sudo access. IBM X-Force ID: 152532.
EPSS
Процентиль: 12%
0.0004
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS2
Дефекты
NVD-CWE-noinfo