CVE-2024-47120

Published: Sep 10, 2025Modified: Sep 18, 2025

6.8

Vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.9 / Impact: 5.9

Source: NVD

Description

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a privileged user to escalate their privileges and attack surface on the host due to the containers running with unnecessary privileges.

Affected (1)

Products: Ibm: Security Verify Information Queue

Ibm

1 product

Security Verify Information Queue

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ibm Security Verify Information Queue	From 10.0.5 to 10.0.11

Running on/with	Platform Versions
Linux Linux Kernel	All versions

Related CWEs

CWE-250

Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

References (1)

https://www.ibm.com/support/pages/node/7244514

Source: psirt@us.ibm.com

Vendor Advisory

Timeline

No history available yet.