Lucene search

[email protected]CVE-2011-3136

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-3136

2022-10-0316:15:06

[email protected]

web.nvd.nist.gov

cve-2011-3136

ibm

tivoli

federated identity manager

tfim

tfimbg

apar iv03048

nvd

vulnerability

management console

security

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.2%

JSON

Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03048.

Affected configurations

NVD

Node

ibmtivoli_federated_identity_managerMatch6.2.0

ibmtivoli_federated_identity_managerMatch6.2.0.1

ibmtivoli_federated_identity_managerMatch6.2.0.2

ibmtivoli_federated_identity_managerMatch6.2.0.3

ibmtivoli_federated_identity_managerMatch6.2.0.8

Node

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.1

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.2

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.3

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.8

CPENameOperatorVersion
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.1
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.2
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.3
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.8

CPE	Name	Operator	Version
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.1
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.2
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.3
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.8

References

secunia.com/advisories/45555

www-01.ibm.com/support/docview.wss?uid=swg1IV03048

www.ibm.com/support/docview.wss?uid=swg24029497

www.ibm.com/support/docview.wss?uid=swg24029498

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.2%

JSON

Related for CVE-2011-3136

cvelist1 prion1 nvd1