CVE-2015-1975

CWE-743 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 74.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tivoli Directory Server
Timeline
PublishedApr 3
Latest updateMay 14

Description

The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, and 6.3 before iFix 37 and IBM Security Directory Server 6.3.1 before iFix 11 and 6.4 before iFix 2 allows local users to gain privileges via vectors related to argument injection. IBM X-Force ID: 103694.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDibm/tivoli_directory_server6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-rg6p-c7wm-93r6: The web administration tool in IBM Tivoli Security Directory Server 62022-05-14
CVEList
CVE-2015-1975: The web administration tool in IBM Tivoli Security Directory Server 62018-04-03
CVE-2015-1975 (HIGH CVSS 7.8) | The web administration tool in IBM | cvebase.io