Lucene search
IbmCVELIST:CVE-2021-29792HistoryJul 12, 2021 - 4:05 p.m.
CVE-2021-29792
2021-07-1216:05:29
ibm
www.cve.org
2
ibm event streams
user privileges
certificates
security vulnerability
CVSS3
4.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.9
Confidence
High
EPSS
0.001
Percentile
39.9%
IBM Event Streams 10.0, 10.1, 10.2, and 10.3 could allow a user the CA private key to create their own certificates and deploy them in the cluster and gain privileges of another user. IBM X-Force ID: 203450.
CNA Affected
[
{
"product": "Event Streams",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "10.0"
},
{
"status": "affected",
"version": "10.1"
},
{
"status": "affected",
"version": "10.2"
},
{
"status": "affected",
"version": "10.3"
}
]
}
]Related
nvd
nvd
CVE-2021-29792
2021-07-12 16:15:09
prion
prion
Code injection
2021-07-12 16:15:00
ibm
ibm
cve
cve
CVE-2021-29792
2021-07-12 16:15:09
CVSS3
4.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.9
Confidence
High
EPSS
0.001
Percentile
39.9%
Related for CVELIST:CVE-2021-29792