CVSS: 7.0EPSS: 0%CPEs: 12EXPL: 0CVE-2015-7442
https://notcve.org/view.php?id=CVE-2015-7442
02 Jan 2016 — consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value. consoleinst.sh en IBM Installation Manager en versiones anteriores a 1.7.4.4 y 1.8.x en versiones anteriores a 1.8.4 y Packaging Utility en versiones anteriores a 1.7.4.4 y 1.8.x en versiones anteriores a 1.8.4 permite a usuarios locales ... • http://www-01.ibm.com/support/docview.wss?uid=swg21971295 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 22EXPL: 0CVE-2014-6134
https://notcve.org/view.php?id=CVE-2014-6134
25 Mar 2015 — IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to the installation account. IBM Rational ClearCase 8.0.0 anterior a 8.0.0.14 y 8.0.1 anterior a 8.0.1.7, cuando se utiliza Installation Manager anterior a 1.8.2, retiene las contraseñas del servidor en texto plano en ... • http://www-01.ibm.com/support/docview.wss?uid=swg21688450 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •