IBM Security Verify Privilege Manager Arbitrary File Upload Vulnerability

IBM Security Verify Privilege Manager is a security management software from International Business Machines (IBM) for endpoint privilege management and application control in corporate environments. The software stops unintentional downloads of malware and ransomware from attacking applications by removing local administrative privileges from endpoints, making it easy to enforce least privilege and application control immediately with IBM Security Privilege Manager. An arbitrary file upload vulnerability exists in IBM Security Verify Privilege On-Premises, which can be exploited by an authenticated, remote attacker to execute arbitrary commands on a system by sending a specially crafted request.