ID CVE-2016-0375Type cveReporter cve@mitre.orgModified 2016-07-08T15:22:00
Description
JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0.0 allows remote authenticated users to obtain administrator privileges for executing arbitrary commands via unspecified vectors.
{"id": "CVE-2016-0375", "bulletinFamily": "NVD", "title": "CVE-2016-0375", "description": "JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0.0 allows remote authenticated users to obtain administrator privileges for executing arbitrary commands via unspecified vectors.", "published": "2016-07-01T01:59:00", "modified": "2016-07-08T15:22:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0375", "reporter": "cve@mitre.org", "references": ["http://www-01.ibm.com/support/docview.wss?uid=swg1IT15743", "http://www-01.ibm.com/support/docview.wss?uid=swg21985064", "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15674"], "cvelist": ["CVE-2016-0375"], "type": "cve", "lastseen": "2020-10-03T12:10:38", "edition": 3, "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2020-10-03T12:10:38", "rev": 2}, "score": {"value": 7.2, "vector": "NONE", "modified": "2020-10-03T12:10:38", "rev": 2}, "vulnersScore": 7.2}, "cpe": ["cpe:/a:ibm:messagesight:1.1.0.1", "cpe:/a:ibm:messagesight:1.2.0.2", "cpe:/a:ibm:messagesight:1.2.0.1", "cpe:/a:ibm:messagesight:2.0.0.0", "cpe:/a:ibm:messagesight:1.1.0.0", "cpe:/a:ibm:messagesight:1.2", "cpe:/a:ibm:messagesight:1.2.0.0", "cpe:/a:ibm:messagesight:1.2.0.3"], "affectedSoftware": [{"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.2"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "2.0.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.1.0.1"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.1"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.1.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.3"}], "cvss2": {"acInsufInfo": true, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:a:ibm:messagesight:1.1.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.1.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:2.0.0.0:*:*:*:*:*:*:*"], "cwe": ["CWE-264"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.1.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:2.0.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.1.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.2:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}
{}
