Vulnerability Details CVE-2023-24958
A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.6%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-24958
-
cpe:2.3:h:ibm:3948-ved:-
-
cpe:2.3:h:ibm:3957-vec:-
-
cpe:2.3:h:ibm:3957-ved:-
-
cpe:2.3:o:ibm:3948-ved_firmware:8.53.0
-
cpe:2.3:o:ibm:3948-ved_firmware:8.53.0.63
-
cpe:2.3:o:ibm:3957-vec_firmware:8.51.0
-
cpe:2.3:o:ibm:3957-vec_firmware:8.52.100.0
-
cpe:2.3:o:ibm:3957-ved_firmware:*
-
cpe:2.3:o:ibm:3957-ved_firmware:8.52.100.0
-
cpe:2.3:o:ibm:3957-ved_firmware:8.52.200.0
-
cpe:2.3:o:ibm:3957-ved_firmware:8.53.0