CVE-2021-29696

Summary

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.

Affected Software

VendorProductVersion RangeStatus
IBMCloud Pak for Security1.6.0.0affected
IBMCloud Pak for Security1.5.0.1affected
IBMCloud Pak for Security1.5.0.0affected
IBMCloud Pak for Security1.6.0.1affected
IBMCloud Pak for Security1.7.0.0affected
IBMCloud Pak for Security1.7.1.0affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References