Privilege Escalation

2020-02-1200:05:43

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

java-ibm is vulnerable to privilege escalation. An attacker is able to gain higher privileges through the ability to execute code in the context of a security manager.

CPENameOperatorVersion
java-1.6.0-ibmeq1.6.0.9.1__1jpp.1.el5
java-1.6.0-ibmeq1.6.0.8.1__1jpp.2.el5
java-1.6.0-ibmeq1.6.0.10.1__1jpp.1.el5
java-1.6.0-ibmeq1.6.0.16.2__1jpp.1.el6
java-1.6.0-ibmeq1.6.0.16.0__1jpp.1.el6
java-1.6.0-ibmeq1.6.0.9.1__1jpp.1.el6
java-1.6.0-ibmeq1.6.0.15.0__1jpp.1.el6
java-1.6.0-ibmeq1.6.0.14.0__1jpp.1.el5_9
java-1.6.0-ibmeq1.6.0.16.0__1jpp.1.el5
java-1.6.0-ibmeq1.6.0.15.0__1jpp.1.el5

Name	Operator	Version
java-1.6.0-ibm	eq	1.6.0.9.1__1jpp.1.el5
java-1.6.0-ibm	eq	1.6.0.8.1__1jpp.2.el5
java-1.6.0-ibm	eq	1.6.0.10.1__1jpp.1.el5
java-1.6.0-ibm	eq	1.6.0.16.2__1jpp.1.el6
java-1.6.0-ibm	eq	1.6.0.16.0__1jpp.1.el6
java-1.6.0-ibm	eq	1.6.0.9.1__1jpp.1.el6
java-1.6.0-ibm	eq	1.6.0.15.0__1jpp.1.el6
java-1.6.0-ibm	eq	1.6.0.14.0__1jpp.1.el5_9
java-1.6.0-ibm	eq	1.6.0.16.0__1jpp.1.el5
java-1.6.0-ibm	eq	1.6.0.15.0__1jpp.1.el5