CVE-2024-35142

Опубликовано: 31 мая 2024

Источник: nvd

CVSS3: 8.4

CVSS3: 7.8

EPSS Низкий

Описание

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges. IBM X-Force ID: 292418.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/292418
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/7155356
Vendor Advisory
http://seclists.org/fulldisclosure/2024/Nov/0
https://exchange.xforce.ibmcloud.com/vulnerabilities/292418
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/7155356
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:security_verify_access_docker:*:*:*:*:*:*:*:*

Версия от 10.0.0 (включая) до 10.0.7 (исключая)

EPSS

Процентиль: 19%

0.00062

Низкий

8.4 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-250

NVD-CWE-Other

Связанные уязвимости

GHSA-p2gg-669j-9r2c

CVSS3: 8.4

github

больше 1 года назад

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges. IBM X-Force ID: 292418.

EPSS

Процентиль: 19%

0.00062

Низкий

8.4 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-250

NVD-CWE-Other