- Description
- IBM Workload Scheduler 9.5, 10.1, and 10.2 stores user credentials in plain text which can be read by a local user.
- Source
- psirt@us.ibm.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- psirt@us.ibm.com
- CWE-256
- Hype score
- Not currently trending
IBM Workload Schedulerに認証情報を平文で保存する脆弱性。CVE-2024-49351はCVSSベーススコアは5.5で、ローカルからの悪用が前提。ただし悪用は容易で、完全性に大きな影響(IBM見解)。 https://t.co/bLd6RA8Mie
@__kokumoto
26 Nov 2024
153 Impressions
2 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-49351 IBM Workload Scheduler 9.5, 10.1, and 10.2 stores user credentials in plain text which can be read by a local user. https://t.co/rs88iwdxA3
@CVEnew
26 Nov 2024
488 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes