CVE-2012-5938IBM Infosphere Information Server vulnerability

CWE-2643 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 89.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Infosphere Information Server
Timeline
PublishedMar 20
Latest updateMay 17

Description

The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via standard filesystem operations.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-r36p-32gw-w8wv: The installation process in IBM InfoSphere Information Server 82022-05-17
CVEList
CVE-2012-5938: The installation process in IBM InfoSphere Information Server 82013-03-20
CVE-2012-5938 — IBM vulnerability | cvebase