Lucene search

IbmCVE-2015-1901

HistoryJun 28, 2015 - 2:59 p.m.

CVE-2015-1901

2015-06-2814:59:01

CWE-200

ibm

web.nvd.nist.gov

ibm

infosphere

information server

installer

security vulnerability

cve-2015-1901

nvd

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local users to obtain sensitive information via unspecified commands.

Affected configurations

Nvd

Node

ibminfosphere_information_serverMatch8.5

ibminfosphere_information_serverMatch8.5.0.1

ibminfosphere_information_serverMatch8.5.0.2

ibminfosphere_information_serverMatch8.5.0.3

ibminfosphere_information_serverMatch8.7

ibminfosphere_information_serverMatch8.7.0.1

ibminfosphere_information_serverMatch8.7.0.2

ibminfosphere_information_serverMatch9.1

ibminfosphere_information_serverMatch9.1.0.1

ibminfosphere_information_serverMatch9.1.2

ibminfosphere_information_serverMatch11.3

ibminfosphere_information_serverMatch11.3.1

VendorProductVersionCPE
ibminfosphere_information_server8.5cpe:2.3:a:ibm:infosphere_information_server:8.5:*:*:*:*:*:*:*
ibminfosphere_information_server8.5.0.1cpe:2.3:a:ibm:infosphere_information_server:8.5.0.1:*:*:*:*:*:*:*
ibminfosphere_information_server8.5.0.2cpe:2.3:a:ibm:infosphere_information_server:8.5.0.2:*:*:*:*:*:*:*
ibminfosphere_information_server8.5.0.3cpe:2.3:a:ibm:infosphere_information_server:8.5.0.3:*:*:*:*:*:*:*
ibminfosphere_information_server8.7cpe:2.3:a:ibm:infosphere_information_server:8.7:*:*:*:*:*:*:*
ibminfosphere_information_server8.7.0.1cpe:2.3:a:ibm:infosphere_information_server:8.7.0.1:*:*:*:*:*:*:*
ibminfosphere_information_server8.7.0.2cpe:2.3:a:ibm:infosphere_information_server:8.7.0.2:*:*:*:*:*:*:*
ibminfosphere_information_server9.1cpe:2.3:a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:*
ibminfosphere_information_server9.1.0.1cpe:2.3:a:ibm:infosphere_information_server:9.1.0.1:*:*:*:*:*:*:*
ibminfosphere_information_server9.1.2cpe:2.3:a:ibm:infosphere_information_server:9.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	infosphere_information_server	8.5	cpe:2.3:a:ibm:infosphere_information_server:8.5:::::::*
ibm	infosphere_information_server	8.5.0.1	cpe:2.3:a:ibm:infosphere_information_server:8.5.0.1:::::::*
ibm	infosphere_information_server	8.5.0.2	cpe:2.3:a:ibm:infosphere_information_server:8.5.0.2:::::::*
ibm	infosphere_information_server	8.5.0.3	cpe:2.3:a:ibm:infosphere_information_server:8.5.0.3:::::::*
ibm	infosphere_information_server	8.7	cpe:2.3:a:ibm:infosphere_information_server:8.7:::::::*
ibm	infosphere_information_server	8.7.0.1	cpe:2.3:a:ibm:infosphere_information_server:8.7.0.1:::::::*
ibm	infosphere_information_server	8.7.0.2	cpe:2.3:a:ibm:infosphere_information_server:8.7.0.2:::::::*
ibm	infosphere_information_server	9.1	cpe:2.3:a:ibm:infosphere_information_server:9.1:::::::*
ibm	infosphere_information_server	9.1.0.1	cpe:2.3:a:ibm:infosphere_information_server:9.1.0.1:::::::*
ibm	infosphere_information_server	9.1.2	cpe:2.3:a:ibm:infosphere_information_server:9.1.2:::::::*

Rows per page:

1-10 of 121

References

www-01.ibm.com/support/docview.wss?uid=swg1JR52549

www-01.ibm.com/support/docview.wss?uid=swg21701436

www.securityfocus.com/bid/75162

www.securitytracker.com/id/1032633

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-1901