CVE-2017-1350IBM Infosphere Information Server vulnerability

6 documents5 sources
Severity
7.8HIGHNVD
CNA8.4OSV5.5
EPSS
0.1%
top 78.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux KernelIBM Infosphere Information Server
Timeline
PublishedJun 5
Latest updateMay 13

Description

IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 could allow a user to escalate their privileges to administrator due to improper access controls. IBM X-Force ID: 126526.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5ibm/infosphere_information_server4 versions+3
Ubuntulinux/linux_kernel< 4.4.0-208.240

🔴Vulnerability Details

3
GHSA
GHSA-phmh-9v7g-f9cq: IBM InfoSphere Information Server 92022-05-13
OSV
linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities2021-04-13
CVEList
CVE-2017-1350: IBM InfoSphere Information Server 92018-06-05

💥Exploits & PoCs

2
Exploit-DB
WebKit - 'WebCore::SVGPatternElement::collectPatternAttributes' Out-of-Bounds Read2017-11-22
Exploit-DB
Peplink Balance Routers 7.0.0-build1904 - SQL Injection / Cross-Site Scripting / Information Disclosure2017-06-06
CVE-2017-1350 — IBM vulnerability | cvebase