CVE-2013-4011

2013-07-1816:51:55

ibm

web.nvd.nist.gov

cve

2013

4011

infiniband

ibm

aix

vios

vulnerabilities

local users

privileges

arp.ib

ibstat

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

51.2%

JSON

Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.

Affected configurations

Nvd

Node

ibmaixMatch6.1

ibmaixMatch7.1

ibmviosMatch2.2.2.2fp-26_sp-02

VendorProductVersionCPE
ibmaix6.1cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
ibmaix7.1cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*
ibmvios2.2.2.2cpe:2.3:o:ibm:vios:2.2.2.2:fp-26_sp-02:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	6.1	cpe:2.3:o:ibm:aix:6.1:::::::*
ibm	aix	7.1	cpe:2.3:o:ibm:aix:7.1:::::::*
ibm	vios	2.2.2.2	cpe:2.3:o:ibm:vios:2.2.2.2:fp-26_sp-02::::::