2.1
CVE-2007-5819
- EPSS 0.31%
- Veröffentlicht 05.11.2007 18:46:00
- Zuletzt bearbeitet 16.06.2026 22:46:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary files into a location used for updating CDP clients.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Tivoli Continuous Data Protection For Files Version3.1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.221 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/27473
http://www-1.ibm.com/support/docview.wss?uid=swg1IC54264
http://www.securityfocus.com/bid/26293
http://www.vupen.com/english/advisories/2007/3683
https://exchange.xforce.ibmcloud.com/vulnerabilities/38215