Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Security Verify Information Queue code execution
Vulnerability Description
IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a privileged user to escalate their privileges and attack surface on the host due to the containers running with unnecessary privileges.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
带着不必要的权限执行
Vulnerability Title
IBM Security Verify Information Queue 安全漏洞
Vulnerability Description
IBM Security Verify Information Queue是美国国际商业机器(IBM)公司的一个集成产品。利用 Kafka 技术和发布/订阅模型来集成 IBM Security 产品之间的数据。 IBM Security Verify Information Queue 10.0.5版本、10.0.6版本、10.0.7版本和10.0.8版本存在安全漏洞,该漏洞源于容器运行权限过高,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A