IBM Workload Scheduler CVE-2019-4031 Local Privilege Escalation Vulnerability

Description

IBM Workload Scheduler is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. The following products are affected: IBM Tivoli Workload Scheduler Distributed 9.2.0 FP03 and prior IBM Workload Scheduler Distributed 9.3.0 FP03 and prior IBM Workload Scheduler Distributed 9.4.0 FP05 and prior IBM Workload Scheduler Distributed 9.5.0 GA

Technologies Affected

• IBM Tivoli Workload Scheduler Distributed 9.2.0
• IBM Tivoli Workload Scheduler Distributed 9.2.0 FP01
• IBM Tivoli Workload Scheduler Distributed 9.2.0 FP02
• IBM Tivoli Workload Scheduler Distributed 9.2.0 FP03
• IBM Workload Scheduler Distributed 9.3.0 FP03
• IBM Workload Scheduler Distributed 9.4.0 FP05
• IBM Workload Scheduler Distributed 9.5.0 GA

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Given the local nature of this issue, grant only trusted and accountable individuals access to affected computers.

Updates are available. Please see the references or vendor advisory for more information.