CVE-2021-29707 - IBM HMC (Hardware Management Console) V9.1.910.0 and V9.2.950.0 could allow a local user to escalate

CVE-2021-29707

Summary

IBM HMC (Hardware Management Console) V9.1.910.0 and V9.2.950.0 could allow a local user to escalate their privileges to root access on a restricted shell. IBM X-Force ID: 200879.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/200879
https://www.ibm.com/support/pages/node/6473347

Vulnerable Configurations

cpe:2.3:a:ibm:hardware_management_console:9.2.950.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:9.2.950.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:9.1.910.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:hardware_management_console:9.1.910.0:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 12-07-2022 - 17:42)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

Last major update

12-07-2022 - 17:42

Published

19-07-2021 - 16:15

Last modified

12-07-2022 - 17:42