Unsanitized web application variables allow a remote authenticated user to execute unauthorized commands as root.
Affected product(s) and affected version(s):
IBM 1754 GCM16 Global Console Manager 126.96.36.19911 and older (lower numbered) releases
IBM 1754 GCM32 Global Console Manager 188.8.131.5211 and older
Refer to the following reference URLs for remediation and additional vulnerability details.
Source Bulletin: https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5093509
X-Force Database: http://xforce.iss.net/xforce/xfdb/85367