CVE-2017-1755

Опубликовано: 06 авг. 2018

Источник: nvd

CVSS3: 6.5

CVSS3: 6.7

CVSS2: 4.6

EPSS Низкий

Описание

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 could allow a local attacker to inject commands into malicious files that could be executed by the administrator. IBM X-Force ID: 135855.

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg22016869
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/135855
VDB Entry
http://www.ibm.com/support/docview.wss?uid=swg22016869
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/135855
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.3.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.3.2:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00047

Низкий

6.5 Medium

CVSS3

6.7 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-x9x8-488r-4xrw

CVSS3: 6.7

github

больше 3 лет назад

EPSS

Процентиль: 14%

0.00047

Низкий

6.5 Medium

CVSS3

6.7 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo