CVE-2012-0705

EPSS 0.54%
Veröffentlicht 31.01.2013 12:06:17
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

InfoSphere Import Export Manager in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 does not validate unspecified input data, which allows remote authenticated users to execute arbitrary commands via unknown vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Infosphere Information Server Version8.1

Ibm ≫ Infosphere Information Server Version8.5

Ibm ≫ Infosphere Information Server Version8.5.0.1

Ibm ≫ Infosphere Information Server Version8.5.0.2

Ibm ≫ Infosphere Information Server Version8.7

Ibm ≫ Infosphere Information Server Version9.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.54%	0.65

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	3.9	10	AV:N/AC:H/Au:S/C:C/I:C/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73292

https://nvd.nist.gov/vuln/detail/CVE-2012-0705

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-0705

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-0705

EUVD