Medium Severity

IBM Security Bulletin: IBM Spectrum LSF is affected by a privilege escalation vulnerability

Share this post:

IBM Spectrum LSF has addressed the following vulnerability. Enhancing the eauth executable file to prevent the preloading of getuid to avoid the users changing their job user at job submission time.

CVE(s): CVE-2018-1724

Affected product(s) and affected version(s):

Affected IBM Platform LSF Affected Versions
IBM Spectrum LSF 10.1
IBM Spectrum LSF 9.1.1
IBM Spectrum LSF 9.1.2
IBM Spectrum LSF 9.1.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/docview.wss?uid=ibm10734767

X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/147439

More Medium Severity stories

IBM Security Bulletin: Vulnerability in IBM Java SDK affect IBM Tivoli System Automation Application Manager April 2019 CPU (CVE-2019-2684)

Jun 24, 2019 9:01 am EDT | Medium Severity

There is a vulnerability in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Tivoli System Automation Application Manager 4.1.0.0 – 4.1.0.1 . These issues were disclosed as part of the IBM Java SDK updates in April 2019. There is a vulnerability in IBM® SDK Java™ Technology Edition, Version 8 used by IBM Tivoli ...read more


IBM Security Bulletin: A security vulnerability in OpenSSL affects IBM Rational ClearQuest (CVE-2019-1559)

Jun 24, 2019 9:01 am EDT | Medium Severity

An OpenSSL vulnerability was disclosed on February 26, 2019 by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVE. CVE(s): VE-2019-1559 Affected product(s) and affected version(s): Rational ClearQuest version 8 and 9 in the following components: ClearQuest hooks and cqperl/ratlperl scripts that use SSL. ClearQuest SSL ...read more


IBM Security Bulletin: Vulnerabilities exist in Watson Explorer Analytical Components and Watson Content Analytics (CVE-2018-1901)

Jun 24, 2019 9:00 am EDT | Medium Severity

Security vulnerabilities have been identified in IBM Watson Explorer Analytical Components, Watson Explorer Foundational Components Annotation Administration Console, and IBM Watson Content Analytics. CVE(s): CVE-2018-1901 Affected product(s) and affected version(s): To see which vulnerabilities apply to your product and version, see the applicable row in the following table. Affected Product Affected Versions Applicable Vulnerabilities IBM ...read more