CVE-2016-0328

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain administrator privileges for command execution via unspecified vectors.
Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
ibmsecurity_guardium_database_activity_monitor
8.2
ibmsecurity_guardium_database_activity_monitor
9.0
ibmsecurity_guardium_database_activity_monitor
9.1
ibmsecurity_guardium_database_activity_monitor
9.5
ibmsecurity_guardium_database_activity_monitor
10.0
ibmsecurity_guardium_database_activity_monitor
10.1
ibmsecurity_guardium_database_activity_monitor
10.01
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21990226
http://www.securityfocus.com/bid/93402
http://www-01.ibm.com/support/docview.wss?uid=swg21990226
http://www.securityfocus.com/bid/93402