CVE-2012-0205 — IBM Infosphere Information Server vulnerability

CWE-2643 documents3 sources

Severity

6.5MEDIUMNVD

EPSS

0.2%

top 58.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Infosphere Information Server IBM Infosphere Metadata Workbench

Timeline

PublishedJan 31

Latest updateMay 4

Description

InfoSphere Metadata Workbench (MWB) 8.1 through 8.7 in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 does not properly restrict use of the troubleshooting feature, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (workbench outage) via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

▶NVDibm/infosphere_metadata_workbench5 versions+4

▶NVDibm/infosphere_information_server5 versions+4

🔴Vulnerability Details

GHSA

GHSA-2wgx-cjgm-cgmf: InfoSphere Metadata Workbench (MWB) 8↗2022-05-04

▶

CVEList

CVE-2012-0205: InfoSphere Metadata Workbench (MWB) 8↗2013-01-31

▶