Описание
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. IBM X-Force ID: 259246.
Ссылки
- VDB EntryVendor Advisory
- PatchVendor Advisory
- VDB EntryVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.1.0.0 (включая) до 8.1.19.0 (включая)Версия от 8.1.0.0 (включая) до 8.1.19.0 (включая)Версия от 8.1.0.0 (включая) до 8.1.19.0 (включая)
Одно из
cpe:2.3:a:ibm:storage_protect:*:*:*:*:virtual_environments\:_data_protection_for_hyper-v:*:*:*
cpe:2.3:a:ibm:storage_protect:*:*:*:*:virtual_environments\:_data_protection_for_vmware:*:*:*
cpe:2.3:a:ibm:storage_protect_client:*:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00021
Низкий
8.4 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-94
CWE-427
Связанные уязвимости
CVSS3: 8.4
github
больше 2 лет назад
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. IBM X-Force ID: 259246.
EPSS
Процентиль: 5%
0.00021
Низкий
8.4 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-94
CWE-427