Описание
IBM Transformation Advisor 2.0.1 through 4.3.1 incorrectly assigns privileges to security critical files which could allow a local root escalation inside a container running the IBM Transformation Advisor Operator Catalog image.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.0.1 (включая) до 4.3.2 (исключая)
cpe:2.3:a:ibm:transformation_advisor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 1%
0.0001
Низкий
8.4 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-732
Связанные уязвимости
CVSS3: 6.7
github
4 месяца назад
IBM Transformation Advisor 2.0.1 through 4.3.1 incorrectly assigns privileges to security critical files which could allow a local root escalation inside a container running the IBM Transformation Advisor Operator Catalog image.
EPSS
Процентиль: 1%
0.0001
Низкий
8.4 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-732