6.9
CVE-2012-3317
- EPSS 0.37%
- Veröffentlicht 05.12.2012 11:57:14
- Zuletzt bearbeitet 16.06.2026 23:43:00
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM WebSphere Message Broker 6.1 before 6.1.0.11, 7.0 before 7.0.0.5, and 8.0 before 8.0.0.2 has incorrect ownership of certain uninstaller Java Runtime Environment (JRE) files, which might allow local users to gain privileges by leveraging access to uid 501 or gid 300.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Websphere Message Broker Version6.1
Ibm ≫ Websphere Message Broker Version6.1.0.1
Ibm ≫ Websphere Message Broker Version6.1.0.2
Ibm ≫ Websphere Message Broker Version6.1.0.3
Ibm ≫ Websphere Message Broker Version6.1.0.4
Ibm ≫ Websphere Message Broker Version6.1.0.5
Ibm ≫ Websphere Message Broker Version6.1.0.6
Ibm ≫ Websphere Message Broker Version6.1.0.7
Ibm ≫ Websphere Message Broker Version6.1.0.8
Ibm ≫ Websphere Message Broker Version6.1.0.9
Ibm ≫ Websphere Message Broker Version6.1.0.10
Ibm ≫ Websphere Message Broker Version7.0.
Ibm ≫ Websphere Message Broker Version7.0.0.1
Ibm ≫ Websphere Message Broker Version7.0.0.2
Ibm ≫ Websphere Message Broker Version7.0.0.3
Ibm ≫ Websphere Message Broker Version7.0.0.4
Ibm ≫ Websphere Message Broker Version8.0
Ibm ≫ Websphere Message Broker Version8.0.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.37% | 0.284 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.9 | 3.4 | 10 |
AV:L/AC:M/Au:N/C:C/I:C/A:C
|
http://www-01.ibm.com/support/docview.wss?uid=swg1IC85477
http://www.ibm.com/support/docview.wss?uid=swg21611401
https://exchange.xforce.ibmcloud.com/vulnerabilities/77818