Lucene search

[email protected]CVE-2011-3137

HistoryAug 12, 2011 - 5:55 p.m.

CVE-2011-3137

2011-08-1217:55:01

[email protected]

web.nvd.nist.gov

ibm

tfim

tfimbg

cve-2011-3137

vulnerability

management console

nvd

apar iv03050

security

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.6%

JSON

Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03050.

Affected configurations

NVD

Node

ibmtivoli_federated_identity_managerMatch6.2.0

ibmtivoli_federated_identity_managerMatch6.2.0.1

ibmtivoli_federated_identity_managerMatch6.2.0.2

ibmtivoli_federated_identity_managerMatch6.2.0.3

ibmtivoli_federated_identity_managerMatch6.2.0.8

Node

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.1

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.2

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.3

ibmtivoli_federated_identity_manager_business_gatewayMatch6.2.0.8

CPENameOperatorVersion
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.1
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.2
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.3
ibm:tivoli_federated_identity_manageribm tivoli federated identity managereq6.2.0.8

CPE	Name	Operator	Version
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.1
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.2
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.3
ibm:tivoli_federated_identity_manager	ibm tivoli federated identity manager	eq	6.2.0.8

References

secunia.com/advisories/45555

www-01.ibm.com/support/docview.wss?uid=swg1IV03050

www.ibm.com/support/docview.wss?uid=swg24029497

www.ibm.com/support/docview.wss?uid=swg24029498

exchange.xforce.ibmcloud.com/vulnerabilities/69203

exchange.xforce.ibmcloud.com/vulnerabilities/69204

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.6%

JSON

Related for CVE-2011-3137

prion1 cvelist1 nvd1