Description
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an attacker to perform unauthorized actions due to improper or missing authentication controls. IBM X-Force ID: 199282.
CVSS breakdown
CVSS 3.0
Confidentiality
Low
Attack Complexity
Low
Privileges Required
None
Availability
None
Integrity
Low
Attack Vector
Adjacent
Scope
Unchanged
User Interaction
None
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / cloud_pak_for_security1.7.0.0 – 1.7.0.0
- ibm / cloud_pak_for_security1.7.1.0 – 1.7.1.0
- ibm / cloud_pak_for_security1.7.2.0 – 1.7.2.0
- ibm / cloud_pak_for_security1.8.0.0 – 1.8.0.0