CVE-2011-3124

CWE-2643 documents3 sources
Severity
7.2HIGH
EPSS
0.0%
top 85.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Infosphere DatastageIBM Infosphere Information Server
Timeline
PublishedAug 10
Latest updateMay 17

Description

IBM InfoSphere Information Server 8.5 and 8.5.0.1 on Unix and Linux, as used in IBM InfoSphere DataStage 8.5 and 8.5.0.1 and other products, assigns incorrect ownership to unspecified files, which allows local users to gain privileges via unknown vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDibm/infosphere_datastage8.5, 8.5.0.1+1

🔴Vulnerability Details

2
GHSA
GHSA-pp53-g8rh-p72w: IBM InfoSphere Information Server 82022-05-17
CVEList
CVE-2011-3124: IBM InfoSphere Information Server 82011-08-10
CVE-2011-3124 (HIGH CVSS 7.2) | IBM InfoSphere Information Server 8 | cvebase.io