CVE-2021-20533

Опубликовано: 15 июл. 2021

Источник: nvd

CVSS3: 8.4

CVSS3: 7.2

CVSS2: 6.5

EPSS Низкий

Описание

IBM Security Verify Access Docker 10.0.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 198813

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/198813
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6471895
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/198813
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6471895
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:*

cpe:2.3:a:docker:docker:-:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00371

Низкий

8.4 High

CVSS3

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-p759-v5fm-r257

github

больше 3 лет назад

IBM Security Verify Access Docker 10.0.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 198813

EPSS

Процентиль: 58%

0.00371

Низкий

8.4 High

CVSS3

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo