Design/Logic Flaw

2013-10-2520:55:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-level account.

CPENameOperatorVersion
flex_system_managereq1.3.0

CPE	Name	Operator	Version
	flex_system_manager	eq	1.3.0

References

www-01.ibm.com/support/docview.wss?uid=swg1IC96952

www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938

exchange.xforce.ibmcloud.com/vulnerabilities/87486