Code injection

2017-02-0120:59:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could allow a local attacker to manipulate certain files.

CPENameOperatorVersion
integration_buseq10.0
integration_buseq9.0.0.2
integration_buseq9.0.0.1
integration_buseq9.0
websphere_message_brokereq8.0
websphere_message_brokereq8.0.0.2
websphere_message_brokereq8.0.0.4
websphere_message_brokereq8.0.0.3
websphere_message_brokereq8.0.0.5
websphere_message_brokereq8.0.0.1

Name	Operator	Version
integration_bus	eq	10.0
integration_bus	eq	9.0.0.2
integration_bus	eq	9.0.0.1
integration_bus	eq	9.0
websphere_message_broker	eq	8.0
websphere_message_broker	eq	8.0.0.2
websphere_message_broker	eq	8.0.0.4
websphere_message_broker	eq	8.0.0.3
websphere_message_broker	eq	8.0.0.5
websphere_message_broker	eq	8.0.0.1