Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under certain configurations, could allow a user on the network to install malicious packages. IBM X-Force ID: 261197.

Remediation

References

CVE-2023-38370

Related Vulnerabilities

PostgreSQL Uncontrolled Search Path Element Vulnerability (CVE-2020-14349)

Apache HTTP Server Other Vulnerability (CVE-2003-0016)

MySQL CVE-2022-21362 Vulnerability (CVE-2022-21362)

WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.15)

Moodle Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9186)

Severity

Medium

Classification

CVE-2023-38370 CWE-276 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities