Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain sensitive information from the container due to incorrect default permissions. IBM X-Force ID: 292415.

Remediation

References

CVE-2024-35139

Related Vulnerabilities

WordPress Plugin MDTF-Wordpress Meta Data & Taxonomies Filter Cross-Site Request Forgery (2.2.7.2)

phpMyAdmin Improper Input Validation Vulnerability (CVE-2011-0986)

WordPress Plugin Under Construction Open Redirect (3.20)

Dolphin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4333)

WordPress Plugin WP Support Plus Responsive Ticket System Multiple Vulnerabilities (4.1)

Severity

Medium

Classification

CVE-2024-35139 CWE-276 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities