1 results (0.003 seconds)
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-35897 – IBM Spectrum Protect code execution
https://notcve.org/view.php?id=CVE-2023-35897
06 Oct 2023 — IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. IBM X-Force ID: 259246. IBM Spectrum Protect Client e IBM Storage Protect for Virtual Environments 8.1.0.0 a 8.1.19.0 podrían permitir a un usuario local ejecutar código arbitrario en el sistema utilizando un archivo especialmente manipulado, causado por una falla de secuestro de ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/259246 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-427: Uncontrolled Search Path Element •