Medium Severity

IBM Security Bulletin: IBM Spectrum LSF is affected by a privilege escalation vulnerability

Share this post:

IBM Spectrum LSF has addressed the following vulnerability. Enhancing the eauth executable file to prevent the preloading of getuid to avoid the users changing their job user at job submission time.

CVE(s): CVE-2018-1724

Affected product(s) and affected version(s):

Affected IBM Platform LSF Affected Versions
IBM Spectrum LSF 10.1
IBM Spectrum LSF 9.1.1
IBM Spectrum LSF 9.1.2
IBM Spectrum LSF 9.1.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/docview.wss?uid=ibm10734767

X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/147439

More Medium Severity stories

Security Bulletin: Openstack Compute (Nova) noVNC proxy

Oct 26, 2021 8:00 pm EDT | High Severity

Fix OpenStack Nova allowing a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the noVNC component. By modifying untrusted URL input using multiple backslashes, an attacker could exploit this vulnerability to redirect a victim to arbitrary website ...read more


Security Bulletin: Cross-Site Scripting Vulnerability Affects Dashboard UI of IBM Sterling B2B Integrator (CVE-2021-29764)

Oct 26, 2021 8:00 pm EDT | Medium Severity

IBM Sterling B2B Integrator has addressed a stored cross-site scripting vulnerability in the Web UI. ...read more


Security Bulletin: Insufficient session expiration in IBM i2 iBase

Oct 26, 2021 8:00 pm EDT | Medium Severity

IBM i2 iBase provides insufficient login sessioon timeouts ...read more