Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under certain configurations, could allow a user on the network to install malicious packages. IBM X-Force ID: 261197.

Remediation

References

CVE-2023-38370

Related Vulnerabilities

WordPress 4.4.x Cross-Domain Flash Injection Vulnerability (4.4 - 4.4.13)

Jboss EAP Improper Access Control Vulnerability (CVE-2013-4213)

Python Uncontrolled Resource Consumption Vulnerability (CVE-2021-3733)

WordPress Plugin Visitor Traffic Real Time Statistics Cross-Site Request Forgery (1.12)

WordPress Plugin MC4WP:Mailchimp for WordPress Cross-Site Scripting (2.2.7)

Severity

Medium

Classification

CVE-2023-38370 CWE-276 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities