CVE-2021-29696 HIGH

CVE-2021-29696

Vendor Ibm
Product Cloud Pak for Security
Published August 2, 2021
Last update September 17, 2024

CVSS base score

8.0/10
Attack vector Network
Attack complexity High
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AC:H/AV:N/A:H/S:C/I:H/PR:H/UI:N/C:H/E:U/RC:C/RL:O

What the vulnerability does

01Description

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.

Key dates

02Disclosure timeline

August 2, 2021 CVE published
September 17, 2024 Record updated