CVE-2023-30997

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jun 27, 2024
Updated: Aug 2, 2024
CWE ID 250

Summary

CVE-2023-30997 is a vulnerability affecting IBM Security Access Manager Docker versions 10.0.0.0 through 10.0.7.1. This issue enables local users to gain root access through improper access controls, as reported by IBM X-Force with ID 254638. The vulnerability poses a significant risk, allowing unauthorized escalation of privileges within the IBM Security Access Manager Docker environment. IBM urges users to apply relevant patches or updates as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM Security Access Manager

Affected Vendors

  • IBM Corporation