Vulnerability CVE-2019-4103


Published: 2019-06-17

Description:
IBM Tivoli Netcool/Impact 7.1.0 allows for remote execution of command by low privileged User. Remote code execution allow to execute arbitrary code on system which lead to take control over the system. IBM X-Force ID: 158094.

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

CVSS2 => (AV:A/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.7/10
10/10
5.1/10
Exploit range
Attack complexity
Authentication
Adjacent network
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
IBM -> Tivoli netcool/impact 

 References:
https://exchange.xforce.ibmcloud.com/vulnerabilities/158094
https://www.ibm.com/support/docview.wss?uid=ibm10887523

Copyright 2024, cxsecurity.com

 

Back to Top