CVE-2000-1239

EPSS 0.21%
Published 31.12.2000 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Tivoli Management Framework Version3.7.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.21%	0.407

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

http://www-1.ibm.com/support/docview.wss?uid=swg21082896

http://www.securityfocus.com/bid/17085

https://exchange.xforce.ibmcloud.com/vulnerabilities/3927

https://nvd.nist.gov/vuln/detail/CVE-2000-1239

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2000-1239

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2000-1239

EUVD