IBM Application Gateway Incorrect Permissions Vulnerability Allowing Unauthorized Actions by Local Privileged Users

Vulnerability

A vulnerability in IBM Application Gateway versions 19.12 through 24.09 could enable a local privileged user to execute unauthorized actions. This issue arises from improper permissions assignment, which may be exploited to gain elevated privileges or access restricted functionalities.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed by local privileged users, potentially allowing them to manipulate the application or its data inappropriately.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Application Gateway Incorrect Permissions Vulnerability Allowing Unauthorized Actions by Local Privileged Users

Vulnerability

Impact

Affected Products

IBM Application Gateway

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating