Lucene search

IbmCVE-2015-1992

HistoryAug 23, 2015 - 2:59 p.m.

CVE-2015-1992

2015-08-2314:59:00

ibm

web.nvd.nist.gov

ibm

systems director

cve-2015-1992

nvd

event processing

local users

privilege escalation

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

IBM Systems Director 5.2.x, 6.1.x, 6.2.0.x, 6.2.1.x, 6.3.0.0, 6.3.1.x, 6.3.2.x, 6.3.3.x, 6.3.5.0, and 6.3.6.0 improperly processes events, which allows local users to gain privileges via unspecified vectors.

Affected configurations

Nvd

Node

ibmsystems_directorMatch5.20

ibmsystems_directorMatch6.3.0.0

ibmsystems_directorMatch6.3.1.0

ibmsystems_directorMatch6.3.1.1

ibmsystems_directorMatch6.3.2.0

ibmsystems_directorMatch6.3.2.1

ibmsystems_directorMatch6.3.2.2

ibmsystems_directorMatch6.3.3.0

ibmsystems_directorMatch6.3.3.1

ibmsystems_directorMatch6.3.5.0

ibmsystems_directorMatch6.3.6.0

VendorProductVersionCPE
ibmsystems_director5.20cpe:2.3:a:ibm:systems_director:5.20:*:*:*:*:*:*:*
ibmsystems_director6.3.0.0cpe:2.3:a:ibm:systems_director:6.3.0.0:*:*:*:*:*:*:*
ibmsystems_director6.3.1.0cpe:2.3:a:ibm:systems_director:6.3.1.0:*:*:*:*:*:*:*
ibmsystems_director6.3.1.1cpe:2.3:a:ibm:systems_director:6.3.1.1:*:*:*:*:*:*:*
ibmsystems_director6.3.2.0cpe:2.3:a:ibm:systems_director:6.3.2.0:*:*:*:*:*:*:*
ibmsystems_director6.3.2.1cpe:2.3:a:ibm:systems_director:6.3.2.1:*:*:*:*:*:*:*
ibmsystems_director6.3.2.2cpe:2.3:a:ibm:systems_director:6.3.2.2:*:*:*:*:*:*:*
ibmsystems_director6.3.3.0cpe:2.3:a:ibm:systems_director:6.3.3.0:*:*:*:*:*:*:*
ibmsystems_director6.3.3.1cpe:2.3:a:ibm:systems_director:6.3.3.1:*:*:*:*:*:*:*
ibmsystems_director6.3.5.0cpe:2.3:a:ibm:systems_director:6.3.5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	systems_director	5.20	cpe:2.3:a:ibm:systems_director:5.20:::::::*
ibm	systems_director	6.3.0.0	cpe:2.3:a:ibm:systems_director:6.3.0.0:::::::*
ibm	systems_director	6.3.1.0	cpe:2.3:a:ibm:systems_director:6.3.1.0:::::::*
ibm	systems_director	6.3.1.1	cpe:2.3:a:ibm:systems_director:6.3.1.1:::::::*
ibm	systems_director	6.3.2.0	cpe:2.3:a:ibm:systems_director:6.3.2.0:::::::*
ibm	systems_director	6.3.2.1	cpe:2.3:a:ibm:systems_director:6.3.2.1:::::::*
ibm	systems_director	6.3.2.2	cpe:2.3:a:ibm:systems_director:6.3.2.2:::::::*
ibm	systems_director	6.3.3.0	cpe:2.3:a:ibm:systems_director:6.3.3.0:::::::*
ibm	systems_director	6.3.3.1	cpe:2.3:a:ibm:systems_director:6.3.3.1:::::::*
ibm	systems_director	6.3.5.0	cpe:2.3:a:ibm:systems_director:6.3.5.0:::::::*

Rows per page:

1-10 of 111

References

www-01.ibm.com/support/docview.wss?uid=nas7d9a0db411a9071e986257e8c0029b365

www-01.ibm.com/support/docview.wss?uid=swg1IT08185

www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098524

www.securitytracker.com/id/1033653

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-1992