Vulnerability Description
IBM InfoSphere DataStage 8.1, 8.5, 8.7, 9.1, and 11.3 through 11.3.1.2 on UNIX allows local users to write to executable files, and consequently obtain root privileges, via unspecified vectors.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Infosphere Datastage | 8.1 |
| Linux | Linux Kernel | All versions |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1JR52770Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21902280PatchVendor Advisory
- http://www.securityfocus.com/bid/75481Third Party AdvisoryVDB Entry
- http://www-01.ibm.com/support/docview.wss?uid=swg1JR52770Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21902280PatchVendor Advisory
- http://www.securityfocus.com/bid/75481Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-1900?
CVE-2015-1900 is a vulnerability with a CVSS score of 7.2 (HIGH). IBM InfoSphere DataStage 8.1, 8.5, 8.7, 9.1, and 11.3 through 11.3.1.2 on UNIX allows local users to write to executable files, and consequently obtain root privileges, via unspecified vectors.
How severe is CVE-2015-1900?
CVE-2015-1900 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-1900?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Infosphere Datastage, Linux Linux Kernel.