CVE-2012-5938

EUVD-2012-5812
The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via standard filesystem operations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
ibminfosphere_information_server
8.1
ibminfosphere_information_server
8.5
ibminfosphere_information_server
8.7
ibminfosphere_information_server
9.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21628844
https://exchange.xforce.ibmcloud.com/vulnerabilities/80493
http://www.ibm.com/support/docview.wss?uid=swg21628844
https://exchange.xforce.ibmcloud.com/vulnerabilities/80493