5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
IBM has released the following Interim Fix 7.6.0.14-IBMStoredIQ_IF001 for IBM StoredIQ in response to CVE-2017-5753, CVE-2017-5715 and CVE-2017-5754.
CVEID: CVE-2017-5753
CVEID: CVE-2017-5715
CVEID: CVE-2017-5754
Affected Product Name
|
Affected Versions
—|—
IBM StoredIQ| 7.6.0.0. - 7.6.0.14
Product
| VRMF| APAR| Remediation/First Fix
—|—|—|—
IBM StoredIQ| 7.6.0.0 - 7.6.0.14| N/A| Apply Interim Fix 7.6.0.14-IBMStoredIQ_IF001 that is available from Fix Central. While it is recommended to upgrade to latest Fix Pack 7.6.0.14 first, this Interim Fix can also be applied to previous Fix Packs.
None
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N