Description

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under certain configurations, could allow a user on the network to install malicious packages. IBM X-Force ID: 261197.

Remediation

References

CVE-2023-38370

Related Vulnerabilities

Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-1000484)

WordPress Plugin Enable Media Replace SQL Injection and Arbitrary File Upload Vulnerabilities (2.3)

WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28)

MySQL CVE-2023-21977 Vulnerability (CVE-2023-21977)

Nginx buffer underflow vulnerability

Severity

Medium

Classification

CVE-2023-38370 CWE-276 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities