CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-51459

Critical Severity
SVRS
74/100
CVSSv3
8.4/10
EPSS
0.00014/1

CVE-2024-51459: IBM InfoSphere Information Server 11.7 privilege escalation vulnerability allows local users to execute privileged commands. This is due to the improper handling of permissions within the software. While the CVSS score is 8.4, SOCRadar's Vulnerability Risk Score (SVRS) is 74, indicating a high, but not critical, risk that should be addressed promptly. A local attacker could exploit this flaw to gain elevated system privileges. This vulnerability is significant because successful exploitation grants unauthorized access and control over the affected system. Although the SVRS does not classify it as critical (above 80), given its potential impact on system security and integrity, patching or mitigation is strongly recommended.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:L
AC:L
PR:N
UI:N
S:U
C:H
I:H
A:H
PUBLICATION DATE2025-03-19
LAST MODIFIED2025-03-19

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-51459 | IBM InfoSphere Information Server 11.7 insufficient permissions or privileges
vuldb.com2025-03-20
CVE-2024-51459 | IBM InfoSphere Information Server 11.7 insufficient permissions or privileges | A vulnerability classified as critical has been found in IBM InfoSphere Information Server 11.7. Affected is an unknown function. The manipulation leads to improper handling of insufficient permissions or privileges. This vulnerability is traded as CVE-2024-51459. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected
vuldb.com
rss
forum
news

Social Media

Beveiligingsrisico in ibm infosphere information server blootgelegd https://t.co/y0OHbdC9Dp #CVE-2024-51459 #IBM InfoSphere Information Server #beveiligingsrisico #kwetsbaarheid #cybersecurity #Trending #Tech #Nieuws
0
0
0
CVE-2024-51459 IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handling of permissions. https://t.co/INQMlAbX0X
0
0
0
[CVE-2024-51459: HIGH] IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handling of permissions.#cybersecurity,#vulnerability https://t.co/T4ndTs01W9 https://t.co/A8KODzypAw
0
0
0

Affected Software

No affected software found for this CVE

References

ReferenceLink
[email protected]https://www.ibm.com/support/pages/node/7185056

CWE Details

CWE IDCWE NameDescription
CWE-280Improper Handling of Insufficient Permissions or PrivilegesThe application does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the application in an invalid state.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence