IBM Performance Tools for i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege. IBM X-Force ID: 284563.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Name | Vendor | Start Version | End Version |
---|---|---|---|
I | Ibm | 7.2 (including) | 7.2 (including) |
I | Ibm | 7.3 (including) | 7.3 (including) |
I | Ibm | 7.4 (including) | 7.4 (including) |
I | Ibm | 7.5 (including) | 7.5 (including) |