CVE-2016-0380

IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and 4.2.0 before 4.2.0.4 iFix003 uses default file permissions of 0664, which allows local users to obtain sensitive information via standard filesystem operations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IT14769
http://www-01.ibm.com/support/docview.wss?uid=swg21988278
http://www.securityfocus.com/bid/92336
http://www-01.ibm.com/support/docview.wss?uid=swg1IT14769
http://www-01.ibm.com/support/docview.wss?uid=swg21988278
http://www.securityfocus.com/bid/92336