IBM3543E2605914E84920242C074D84ED5508995B3E1CBC65A12A6380E6D84B2D3CSecurity Bulletin: IBM InfoSphere Master Data Management Collaborative Edition affected by Privilege Escalation security vulnerabilities (CVE-2015-7424)
0.001 Low
EPSS
Percentile
32.3%
Summary
IBM InfoSphere Master Data Management - Collaborative Edition is vulnerable to Privilege Escalation.
Vulnerability Details
CVEID: CVE-2014-7424 DESCRIPTION: Provide sufficient details for someone to tell if they have the problem, but not enough detail that someone with malicious intent could use the description to create an exploit
CVSS Base Score: 3.1
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/107780 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
IBM InfoSphere Master Data Management Collaborative Edition Versions 11.5,11.4, 11.3, 11.0, 10.1, 9.1.
Remediation/Fixes
The recommended solution is to apply the fix as soon as practical. Please see below for information on the fixes available.
| Product | VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| IBM InfoSphere Master Data Management - Collaborative Edition |
11.5
| None| 11.5.0.2-MDM-CE-FP02IF000
IBM InfoSphere Master Data Management - Collaborative Edition|
11.4
| None| 11.4 FP5
IBM InfoSphere Master Data Management - Collaborative Edition|
11.3
| None| 11.3.0-WS-MDMCS-IF008
IBM InfoSphere Master Data Management - Collaborative Edition|
11.0
| None| 11.0.0.0_MDMCS_FP010
IBM InfoSphere Master Data Management - Collaborative Edition|
10.1
| None| 10.1.0.0-MDMCS-FP015
IBM InfoSphere Master Data Management Server for Product Information Management|
9.1
| None| 9.1.0-WS_MDMPIM-iFix015
Workarounds and Mitigations
None known
Affected configurations
Related
0.001 Low
EPSS
Percentile
32.3%