CVE-2014-8896

EUVD-2014-8723
The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modify the administrator's credentials and consequently gain privileges via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
Affected Products (NVD)
VendorProductVersion
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.1
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.2
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.3
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.4
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.5
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.6
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.7
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0.8
ibminfosphere_master_data_management_server_for_product_information_management
9.1.0
ibminfosphere_master_data_management_collaborative_server
10.0.0
ibminfosphere_master_data_management_collaborative_server
10.0.0.1
ibminfosphere_master_data_management_collaborative_server
10.0.0.2
ibminfosphere_master_data_management_collaborative_server
10.0.0.3
ibminfosphere_master_data_management_collaborative_server
10.0.0.4
ibminfosphere_master_data_management_collaborative_server
10.0.0.5
ibminfosphere_master_data_management_collaborative_server
10.1.0
ibminfosphere_master_data_management_collaborative_server
11.0
ibminfosphere_master_data_management_collaborative_server
11.3
ibminfosphere_master_data_management_collaborative_server
11.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21692176
https://exchange.xforce.ibmcloud.com/vulnerabilities/99049
http://www-01.ibm.com/support/docview.wss?uid=swg21692176
https://exchange.xforce.ibmcloud.com/vulnerabilities/99049