IBM

IBM, a major enterprise software and systems vendor, has a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, with no user interaction needed, resulting in complete compromise of confidentiality, integrity, and availability on the affected system. This is a local privilege escalation or lateral movement risk rather than a remote attack vector. Security teams should monitor for patches between now and the April 1, 2025 deadline and prioritize systems where untrusted users have local access.