OpenCVE

A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	3948-ved 3948-ved Firmware 3957-vec 3957-vec Firmware 3957-ved 3957-ved Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:ibm:3957-vec_firmware::::::::
	cpe:2.3:o:ibm:3957-vec_firmware::::::::

cpe:2.3:h:ibm:3957-vec:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:ibm:3957-ved_firmware::::::::
	cpe:2.3:o:ibm:3957-ved_firmware::::::::
	cpe:2.3:o:ibm:3957-ved_firmware::::::::
	cpe:2.3:o:ibm:3957-ved_firmware::::::::

cpe:2.3:h:ibm:3957-ved:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:ibm:3948-ved_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ibm:3948-ved:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://exchange.xforce.ibmcloud.com/vulnerabilities/246320
https://www.ibm.com/support/pages/node/6980845

History

No history.

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2023-05-04T13:38:49.305Z

Updated: 2024-08-02T11:11:43.200Z

Reserved: 2023-02-01T02:39:37.387Z

Link: CVE-2023-24958

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-05-04T14:15:10.173

Modified: 2024-11-21T07:48:50.757

Link: CVE-2023-24958

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-24958", "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "state": "PUBLISHED", "assignerShortName": "ibm", "dateReserved": "2023-02-01T02:39:37.387Z", "datePublished": "2023-05-04T13:38:49.305Z", "dateUpdated": "2024-08-02T11:11:43.200Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Virtualization Engine TS7700", "vendor": "IBM", "versions": [{"status": "affected", "version": "8.51.2.12, 8.52.200.111, 8.52.102.13, 8.53.0.63"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320."}], "value": "A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm", "dateUpdated": "2023-05-04T13:38:49.305Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.ibm.com/support/pages/node/6980845"}, {"tags": ["vdb-entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/246320"}], "source": {"discovery": "UNKNOWN"}, "title": "IBM TS7700 Management Interface command injection", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T11:11:43.200Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://www.ibm.com/support/pages/node/6980845"}, {"tags": ["vdb-entry", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/246320"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:3957-vec_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B197CD8D-54E2-484B-8738-76023E622849", "versionEndExcluding": "8.51.2.12", "versionStartIncluding": "8.51.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:ibm:3957-vec_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E066D44A-254C-411A-B1DD-4A5CDA4158CA", "versionEndExcluding": "8.52.102.13", "versionStartIncluding": "8.52.100.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:3957-vec:-:*:*:*:*:*:*:*", "matchCriteriaId": "DA5AFD00-4476-4F6D-B94B-CC5DC0AFFA85", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:3957-ved_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "980CFAB9-3673-4204-92C0-ED354DCAE690", "versionEndExcluding": "8.51.2.12", "versionStartIncluding": "8.51.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:ibm:3957-ved_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C14361A3-98BE-4EC9-8F7C-5B12613AA4B8", "versionEndExcluding": "8.52.102.13", "versionStartIncluding": "8.52.100.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:ibm:3957-ved_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "25F7347A-BA05-4798-ABBC-8DEA7828DCFD", "versionEndExcluding": "8.52.200.111", "versionStartIncluding": "8.52.200.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:ibm:3957-ved_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1999ACE8-40C7-4D9E-837A-E53C44F7A6E8", "versionEndExcluding": "8.53.0.63", "versionStartIncluding": "8.53.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:3957-ved:-:*:*:*:*:*:*:*", "matchCriteriaId": "224332D9-31A8-4EF3-B675-29783295E98F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:3948-ved_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D76A6F44-751C-49D0-8834-2369F7B7A285", "versionEndIncluding": "8.53.0.63", "versionStartIncluding": "8.53.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:3948-ved:-:*:*:*:*:*:*:*", "matchCriteriaId": "B531AEEC-2838-4A21-92B4-90BA2D06D1BC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320."}], "id": "CVE-2023-24958", "lastModified": "2024-11-21T07:48:50.757", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "psirt@us.ibm.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-05-04T14:15:10.173", "references": [{"source": "psirt@us.ibm.com", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/246320"}, {"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "https://www.ibm.com/support/pages/node/6980845"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/246320"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.ibm.com/support/pages/node/6980845"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "psirt@us.ibm.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}