Improper privilege management in IBM Watson Assistant for IBM Cloud Pak for Data

1) Improper Privilege Management

EUVDB-ID: #VU78721

Risk: High

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-22946

CWE-ID: CWE-269 - Improper Privilege Management

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper privilege management. A local user can send specially crafted configuration-related classes on the classpath and exploit this vulnerability to execute arbitrary code with the privileges of the submitting user.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM Watson Assistant for IBM Cloud Pak for Data: 4.0.2 - 4.6.3

CPE2.3

• cpe:2.3:a:ibm_corporation:ibm_watson_assistant_for_ibm_cloud_pak_for_data:4.0.2:*:*:*:*:*:*:*
• cpe:2.3:a:ibm_corporation:ibm_watson_assistant_for_ibm_cloud_pak_for_data:4.0.4:*:*:*:*:*:*:*
• cpe:2.3:a:ibm_corporation:ibm_watson_assistant_for_ibm_cloud_pak_for_data:4.0.5:*:*:*:*:*:*:*

External links

https://www.ibm.com/support/pages/node/7012689

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.