IBM Tivoli Netcool Impact allows for remote execution of command by low privileged User. Remote code execution allow to execute arbitrary code on system which lead to take control over the system.
CVEID: CVE-2019-4103 DESCRIPTION: IBM Tivoli Netcool allows for remote execution of command by low privileged User. Remote code execution allow to execute arbitrary code on system which lead to take control over the system.
CVSS Base Score: 8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/158094> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
Affected IBM Tivoli Netcool Impact
| Affected Versions
—|—
IBM Tivoli Netcool Impact 7.1.0 | 7.1.0.0 ~ 7.1.0.15
Product
| VRMF | APAR | Remediation / First Fix
—|—|—|—
IBM Tivoli Netcool Impact 7.1.0 | FP16 | IJ13957 | IBM Tivoli Netcool/Impact V7.1.0 Fix Pack 16
None
CPE | Name | Operator | Version |
---|---|---|---|
tivoli netcool/impact | eq | 7.1.0 |