IBM Workload Scheduler is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. The following products are affected: IBM Tivoli Workload Scheduler Distributed 9.2.0 FP03 and prior IBM Workload Scheduler Distributed 9.3.0 FP03 and prior IBM Workload Scheduler Distributed 9.4.0 FP05 and prior IBM Workload Scheduler Distributed 9.5.0 GA
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Given the local nature of this issue, grant only trusted and accountable individuals access to affected computers.
Updates are available. Please see the references or vendor advisory for more information.