CVE-2023-37410

Summary

IBM Personal Communications 14.05, 14.06, and 15.0.0 could allow a local user to escalate their privileges to the SYSTEM user due to overly permissive access controls. IBM X-Force ID: 260138.

Affected Software

VendorProductVersion RangeStatus
IBMPerson Communications14.05, 14.06, 15.0.0affected

Weaknesses

  • 264 Permissions, Privileges, Access Controls

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References