How severe is CVE-2024-22334?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2024-22334?

This is classified as CWE-732, which is a common weakness in software security.

CVE-2024-22334 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type. When deleting a custom security type, associated permissions of objects using that type may not be fully revoked. This could lead to incorrect reporting of permission configuration and unexpected privileges being retained. IBM X-Force ID: 279974.

Related Vulnerabilities

CVE-2016-9604

MEDIUM

CVSS:4.4(Medium)

It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dns_resolver' in RHEL-7 or '.builtin_trusted_keys' upstream, by joining it as i...

CWE-7322016

CVE-2018-5540

MEDIUM

CVSS:4.4(Medium)

On F5 BIG-IP 13.0.0-13.0.1, 12.1.0-12.1.3.3, 11.6.0-11.6.3.1, or 11.5.1-11.5.6, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.1.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkfl...

CWE-7322018

CVE-2019-19335

MEDIUM

CVSS:4.4(Medium)

During installation of an OpenShift 4 cluster, the `openshift-install` command line tool creates an `auth` directory, with `kubeconfig` and `kubeadmin-password` files. Both files contain credentials u...

CWE-7322019

CVE-2023-0207

MEDIUM

CVSS:4.4(Medium)

NVIDIA DGX-2 SBIOS contains a vulnerability where an attacker may modify the ServerSetup NVRAM variable at runtime by executing privileged code. A successful exploit of this vulnerability may lead to ...

CWE-7322023

CVE-2023-38640

MEDIUM

CVSS:4.4(Medium)

A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.22). The affected application is installed with specific files and folders with insecure permissions. This could allow ...

CWE-7322023

CVE-2024-21305

MEDIUM

CVSS:4.4(Medium)

Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

CWE-7322024