| |
Vulnerability CVE-2012-0700
Published: 2013-01-31
| Description: |
The client in InfoSphere FastTrack 8.1 through 8.7 in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 does not properly store credentials, which allows local users to bypass intended access restrictions via unspecified vectors. |
Type:
CWE-255 (Credentials Management)
CVSS2 => (AV:L/AC:M/Au:N/C:N/I:P/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
1.9/10 |
2.9/10 |
3.4/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Medium |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
None |
Partial |
None |
References: |
http://xforce.iss.net/xforce/xfdb/73266
http://www-01.ibm.com/support/docview.wss?uid=swg21623501
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
