Unsanitized web application variables allow a remote authenticated user to execute unauthorized commands as root.
Affected product(s) and affected version(s):
IBM 1754 GCM16 Global Console Manager 220.127.116.1111 and older (lower numbered) releases
IBM 1754 GCM32 Global Console Manager 18.104.22.16811 and older
Refer to the following reference URLs for remediation and additional vulnerability details.
Source Bulletin: https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5093509
X-Force Database: http://xforce.iss.net/xforce/xfdb/85367