CVE-2016-0252

CWE-200Information Exposure4 documents4 sources
Severity
5.1MEDIUM
EPSS
0.1%
top 84.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Control CenterIBM Sterling Control Center
Timeline
PublishedJul 8
Latest updateMay 17

Description

IBM Control Center 6.x before 6.0.0.1 iFix06 and Sterling Control Center 5.4.x before 5.4.2.1 iFix09 allow local users to decrypt the master key via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 1.4 | Impact: 3.6

Affected Packages2 packages

NVDibm/sterling_control_center6 versions+5
NVDibm/control_center6.0.0.0

🔴Vulnerability Details

2
GHSA
GHSA-3cmp-c3h3-9xgc: IBM Control Center 62022-05-17
CVEList
CVE-2016-0252: IBM Control Center 62016-07-08

💬Community

1
Bugzilla
CVE-2016-9311 ntp: Null pointer dereference when trap service is enabled2016-11-24
CVE-2016-0252 (MEDIUM CVSS 5.1) | IBM Control Center 6.x before 6.0.0 | cvebase.io