Vulnerability Details : CVE-2011-3123
IBM InfoSphere Information Server 8.5 and 8.5.0.1 on Unix and Linux, as used in IBM InfoSphere DataStage 8.5 and 8.5.0.1 and other products, uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
Products affected by CVE-2011-3123
- cpe:2.3:a:ibm:infosphere_information_server:8.5:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:a:ibm:infosphere_information_server:8.5.0.1:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:a:ibm:infosphere_datastage:8.5.0.1:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:a:ibm:infosphere_datastage:8.5:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
Exploit prediction scoring system (EPSS) score for CVE-2011-3123
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-3123
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2011-3123
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-3123
-
http://www.securityfocus.com/bid/48516
IBM InfoSphere Information Server Multiple Local Privilege Escalation Vulnerabilities
-
http://www.ibm.com/support/docview.wss?uid=swg24030333
IBM Download fix for Security Vulnerability: privilege escalation, APAR JR39769
-
http://www.ibm.com/support/docview.wss?uid=swg21504279
IBM notice: The page you requested cannot be displayed
-
http://www-01.ibm.com/support/docview.wss?uid=swg1JR39769
IBM notice: The page you requested cannot be displayed
Jump to