Описание
IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could allow a local attacker to manipulate certain files.
Ссылки
- PatchVendor Advisory
- Technical DescriptionVDB Entry
- PatchVendor Advisory
- Technical DescriptionVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:integration_bus:9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:integration_bus:9.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:integration_bus:9.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:integration_bus:10.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.5:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00049
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-275
Связанные уязвимости
CVSS3: 3.3
github
больше 3 лет назад
IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could allow a local attacker to manipulate certain files.
EPSS
Процентиль: 15%
0.00049
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-275