A huge collection of 3400+ free website templates JAR theme com WP themes and more at the biggest community-driven free web design site
Home / security-advisories / Privilege escalation vulnerability in IBM Cloud Pak, IBM Maximo Application Suite (CVE-2023-41419)

Privilege escalation vulnerability in IBM Cloud Pak, IBM Maximo Application Suite (CVE-2023-41419)

Advisory No: TZCERT/SA/2024/05/10-1

Date of First Release: 10th May 2024

Source: IBM

Software Affected: IBM Cloud Pak, IBM Maximo Application Suite

Overview:

IBM Cloud Pak, IBM Maximo Application Suite are vulnerable to a critical vulnerability. The attackers can leverage the vulnerability to gain the escalated privilege.

Description:

The critical vulnerability rated at 9.8 and tracked as CVE-2023-41419 is affecting IBM Cloud Pak, IBM Maximo Application Suite. The flaw exists in the WSGIServer component. The attackers can exploit the vulnerability using a specially crafted script to gain escalated privilege.

Impact:

Successful exploitation of this vulnerability may allow an attacker to gain escalated privilege.

Solution:

IBM has released security patches for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

  1. https://exchange.xforce.ibmcloud.com/vulnerabilities/267078

Check Also

Remote Code Execution Vulnerabilities in IBM Operational Decision Manager, and IBM i Modernization Engine for Lifecycle Integration (CVE-2019-19919, CVE-2019-12384)

Advisory No: TZCERT/SA/2024/05/17-6 Date of First Release: 17th May 2024 Source: IBM Software Affected: IBM …