CVE-2016-5990

EUVD-2016-6924
IBM Security Privileged Identity Manager Virtual Appliance allows an authenticated user to upload malicious files that would be automatically executed by the server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 41%
Affected Products (NVD)
VendorProductVersion
ibmsecurity_privileged_identity_manager
2.0.2
ibmsecurity_privileged_identity_manager
2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21996614
http://www.securityfocus.com/bid/95199
http://www.ibm.com/support/docview.wss?uid=swg21996614
http://www.securityfocus.com/bid/95199