Lucene search

[email protected]CVE-2015-1901

HistoryJun 28, 2015 - 2:59 p.m.

CVE-2015-1901

2015-06-2814:59:01

CWE-200

[email protected]

web.nvd.nist.gov

ibm

infosphere

information server

installer

security vulnerability

cve-2015-1901

nvd

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local users to obtain sensitive information via unspecified commands.

Affected configurations

NVD

Node

ibminfosphere_information_serverMatch8.5

ibminfosphere_information_serverMatch8.5.0.1

ibminfosphere_information_serverMatch8.5.0.2

ibminfosphere_information_serverMatch8.5.0.3

ibminfosphere_information_serverMatch8.7

ibminfosphere_information_serverMatch8.7.0.1

ibminfosphere_information_serverMatch8.7.0.2

ibminfosphere_information_serverMatch9.1

ibminfosphere_information_serverMatch9.1.0.1

ibminfosphere_information_serverMatch9.1.2

ibminfosphere_information_serverMatch11.3

ibminfosphere_information_serverMatch11.3.1

CPENameOperatorVersion
ibm:infosphere_information_serveribm infosphere information servereq8.5
ibm:infosphere_information_serveribm infosphere information servereq8.5.0.1
ibm:infosphere_information_serveribm infosphere information servereq8.5.0.2
ibm:infosphere_information_serveribm infosphere information servereq8.5.0.3
ibm:infosphere_information_serveribm infosphere information servereq8.7
ibm:infosphere_information_serveribm infosphere information servereq8.7.0.1
ibm:infosphere_information_serveribm infosphere information servereq8.7.0.2
ibm:infosphere_information_serveribm infosphere information servereq9.1
ibm:infosphere_information_serveribm infosphere information servereq9.1.0.1
ibm:infosphere_information_serveribm infosphere information servereq9.1.2

CPE	Name	Operator	Version
ibm:infosphere_information_server	ibm infosphere information server	eq	8.5
ibm:infosphere_information_server	ibm infosphere information server	eq	8.5.0.1
ibm:infosphere_information_server	ibm infosphere information server	eq	8.5.0.2
ibm:infosphere_information_server	ibm infosphere information server	eq	8.5.0.3
ibm:infosphere_information_server	ibm infosphere information server	eq	8.7
ibm:infosphere_information_server	ibm infosphere information server	eq	8.7.0.1
ibm:infosphere_information_server	ibm infosphere information server	eq	8.7.0.2
ibm:infosphere_information_server	ibm infosphere information server	eq	9.1
ibm:infosphere_information_server	ibm infosphere information server	eq	9.1.0.1
ibm:infosphere_information_server	ibm infosphere information server	eq	9.1.2

Rows per page:

1-10 of 121

References

www-01.ibm.com/support/docview.wss?uid=swg1JR52549

www-01.ibm.com/support/docview.wss?uid=swg21701436

www.securityfocus.com/bid/75162

www.securitytracker.com/id/1032633

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-1901

ibm1 nvd1 cvelist1 prion1