IBM InfoSphere 11.7.0.x < 11.7.1.6 SP1 Command Injection (7246170)

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(266458);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/03/10");

  script_cve_id("CVE-2025-36245");
  script_xref(name:"IAVB", value:"2025-B-0163-S");

  script_name(english:"IBM InfoSphere 11.7.0.x < 11.7.1.6 SP1 Command Injection (7246170)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The version of IBM InfoSphere Information Server installed on the remote host is 11.7.0 prior to 11.7.1.6 SP1. 
It is, therefore, affected by a command injection vulnerability, as referenced in the 7246170 advisory.

  - IBM InfoSphere 11.7.0.0 through 11.7.1.6 Information Server could allow an authenticated user to execute 
    arbitrary commands with elevated privileges on the system due to improper validation of user supplied 
    input. (CVE-2025-36245)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/7246170");
  script_set_attribute(attribute:"solution", value:
"Upgrade IBM InfoSphere Information Server based upon the guidance specified in 7246170.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-36245");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/09/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/09/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/10/03");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:infosphere_information_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ibm_infosphere_information_server.nbin");
  script_require_keys("SMB/Registry/Enumerated", "installed_sw/IBM InfoSphere Information Server", "Settings/ParanoidReport");

  exit(0);
}

include('vdf.inc');

if (report_paranoia < 2) audit(AUDIT_PARANOID);

# @tvdl-content
var vuln_data = {
  'metadata': {'spec_version': '1.0'},
  'requires': [
    {'scope': 'target', 'match': {'os': 'windows'}}
  ],
  'checks': [
    {
      'product': {'name': 'IBM InfoSphere Information Server', 'type': 'app'},
      'check_algorithm': 'default',
      'constraints': [
        {'min_version': '11.7.0', 'max_version': '11.7.1.6', 'fixed_display': '11.7.1.6SP1'}
      ]
    }
  ]
};

var result = vdf::check_and_report(vuln_data:vuln_data, severity:SECURITY_HOLE);
vdf::handle_check_and_report_errors(vdf_result:result);