IBM8F3B93F4A1504627A2694A8BEFFAAE2FAB3B808147C3AA0D15CCD16E8B82591FSecurity Bulletin: Privilege escalation vulnerability in IBM® InfoSphere® Master Data Management - Collaborative Edition (CVE-2014-3063)
0.0004 Low
EPSS
Percentile
5.1%
Summary
A vulnerability in IBM® InfoSphere® Master Data Management - Collaborative Edition might allow an escalation of privilege attack.
Vulnerability Details
CVE ID: CVE-2014-3063
Description:
IBM® InfoSphere® Master Data Management - Collaborative Edition contains a vulnerability that might allow a local attacker to gain administrator access.
CVSS:
CVSS Base Score: 6.9
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/93599 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Affected Products and Versions
IBM InfoSphere Master Data Management - Collaborative Edition Versions 11.3, 11.0, 10.1 and 10.0.
IBM InfoSphere Master Data Management Server for Product Information Management Versions 9.1 and 9.0.
Remediation/Fixes
The recommended solution is to apply the fix as soon as practical. Please see below for information on the fixes available.
| Product | VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| IBM InfoSphere Master Data Management - Collaborative Edition |
10.1/10.0
| None| 10.1-FP11
IBM InfoSphere Master Data Management - Collaborative Edition| 11.0| None| 11.0-FP5
IBM InfoSphere Master Data Management - Collaborative Edition | 11.3| None| 11.3-IF002
IBM InfoSphere Master Data Management Server for Product Information Management| 9.1/9.0| None| 9.1-FP15
Workarounds and Mitigations
None known
Related
0.0004 Low
EPSS
Percentile
5.1%