CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 0CVE-2015-1900
https://notcve.org/view.php?id=CVE-2015-1900
IBM InfoSphere DataStage 8.1, 8.5, 8.7, 9.1, and 11.3 through 11.3.1.2 on UNIX allows local users to write to executable files, and consequently obtain root privileges, via unspecified vectors. IBM InfoSphere DataStage 8.1, 8.5, 8.7, 9.1, y 11.3 hasta 11.3.1.2 en UNIX permite a usuarios locales escribir en ficheros ejecutables, y como consecuencia obtener privilegios root, a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=swg1JR52770 http://www-01.ibm.com/support/docview.wss?uid=swg21902280 http://www.securityfocus.com/bid/75481 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2012-0701
https://notcve.org/view.php?id=CVE-2012-0701
The client applications in the DataStage Administrator client in InfoSphere DataStage in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 rely on client-side access control, which allows remote authenticated users to gain privileges via unspecified vectors. La aplicación cliente en el DataStage Administrator client in InfoSphere DataStage en IBM InfoSphere Information Server v8.1, v8.5 anterior a FP3, y v8.7 confia en el control de acceso del lado del cliente, lo que permite a usuarios remotos autenticados ganar privielgios mediante vectores desconocidos. • http://www-01.ibm.com/support/docview.wss?uid=swg21623501 https://exchange.xforce.ibmcloud.com/vulnerabilities/73285 • CWE-264: Permissions, Privileges, and Access Controls •