ID CVE-2016-0375
Type cve
Reporter cve@mitre.org
Modified 2016-07-08T15:22:00
Description
JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0.0 allows remote authenticated users to obtain administrator privileges for executing arbitrary commands via unspecified vectors.
{"id": "CVE-2016-0375", "bulletinFamily": "NVD", "title": "CVE-2016-0375", "description": "JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0.0 allows remote authenticated users to obtain administrator privileges for executing arbitrary commands via unspecified vectors.", "published": "2016-07-01T01:59:00", "modified": "2016-07-08T15:22:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0375", "reporter": "cve@mitre.org", "references": ["http://www-01.ibm.com/support/docview.wss?uid=swg1IT15743", "http://www-01.ibm.com/support/docview.wss?uid=swg21985064", "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15674"], "cvelist": ["CVE-2016-0375"], "type": "cve", "lastseen": "2020-10-03T12:10:38", "edition": 3, "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2020-10-03T12:10:38", "rev": 2}, "score": {"value": 7.2, "vector": "NONE", "modified": "2020-10-03T12:10:38", "rev": 2}, "vulnersScore": 7.2}, "cpe": ["cpe:/a:ibm:messagesight:1.1.0.1", "cpe:/a:ibm:messagesight:1.2.0.2", "cpe:/a:ibm:messagesight:1.2.0.1", "cpe:/a:ibm:messagesight:2.0.0.0", "cpe:/a:ibm:messagesight:1.1.0.0", "cpe:/a:ibm:messagesight:1.2", "cpe:/a:ibm:messagesight:1.2.0.0", "cpe:/a:ibm:messagesight:1.2.0.3"], "affectedSoftware": [{"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.2"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "2.0.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.1.0.1"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.1"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.1.0.0"}, {"cpeName": "ibm:messagesight", "name": "ibm messagesight", "operator": "eq", "version": "1.2.0.3"}], "cvss2": {"acInsufInfo": true, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:a:ibm:messagesight:1.1.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.1.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:1.2.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:messagesight:2.0.0.0:*:*:*:*:*:*:*"], "cwe": ["CWE-264"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.1.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:2.0.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.1.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:messagesight:1.2.0.2:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}
{}