Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under certain configurations, could allow a user on the network to install malicious packages. IBM X-Force ID: 261197.

Remediation

References

CVE-2023-38370

Related Vulnerabilities

PostgreSQL Other Vulnerability (CVE-2007-3280)

WordPress Plugin AVH Extended Categories Widgets SQL Injection (4.0.0)

WordPress Plugin All-in-One Custom Backgrounds Lite Unspecified Vulnerability (2.0.2)

WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.0)

WordPress Plugin Coming Soon Page & Maintenance Mode Cross-Site Scripting (1.8.1)

Severity

Medium

Classification

CVE-2023-38370 CWE-276 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities