Vulnerability Details : CVE-2008-2515
Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related to an "environment variable handling error."
Products affected by CVE-2008-2515
- cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-2515
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-2515
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2008-2515
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-2515
-
http://securitytracker.com/id?1020085
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ22350
Patch
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ22349
Patch
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ21506
Patch
-
http://www.vupen.com/english/advisories/2008/1626/references
Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/42579
-
http://www.securityfocus.com/bid/29325
Patch
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5424
-
http://aix.software.ibm.com/aix/efixes/security/iostat_advisory.asc
Vendor Advisory
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ22351
Patch;Vendor Advisory
-
http://www.ibm.com/support/docview.wss?uid=isg1IZ20635
Patch
Jump to