CVE-2024-25050
Published: 28 April 2024
Summary
CVE-2024-25050 is a high-severity Uncontrolled Search Path Element (CWE-427) vulnerability in Ibm Rational Developer For I. Its CVSS base score is 8.4 (High).
Operationally, ranked at the 23.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-22412
Vulnerability details
IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking and compiler infrastructure could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could…
more
cause user-controlled code to run with administrator privileges. IBM X-Force ID: 283242.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.