← Volver a CVEs
CVE-2026-1346
CRITICAL9.3
Descripcion
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a locally authenticated user to escalate their privileges to root due to execution with unnecessary privileges than required.
Detalles CVE
Puntuacion CVSS v3.19.3
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado4/8/2026
Ultima modificacion4/9/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:security_verify_accessibm:security_verify_access_containeribm:verify_identity_accessibm:verify_identity_access_container
Debilidades (CWE)
CWE-250
Referencias
https://www.ibm.com/support/pages/node/7268253(psirt@us.ibm.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.