Security Advisory

CVE-2024-47104

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-18 10:53:19

Last updated 2024-12-18 14:41:39

Assigner ibm

State PUBLISHED

Description

IBM i 7.4 and 7.5 is vulnerable to an authenticated user gaining elevated privilege to a physical file. A user with authority to a view can alter the based-on physical file security attributes without having object management rights to the physical file. A malicious actor can use the elevated privileges to perform actions restricted by their view privileges.

← Browse all CVEs View on cve.org ↗