CVE-2019-4236
CVE-2019-4236
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 5.1EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
22 jul 2019Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A IBM Spectrum Protect 7.l client backup or archive operation running for an HP-UX VxFS object is silently skipping Access Control List (ACL) entries from backup or archive if there are more than twelve ACL entries associated with the object in total. As a result, it could allow a local attacker to restore or retrieve the object with incorrect ACL entries. IBM X-Force ID: 159418.
CVSS:3.0/AV:L/I:L/C:L/S:U/A:N/PR:N/AC:L/UI:N/RC:C/E:U/RL:O
Produtos afetados
IBM · Spectrum Protect