CVE-2011-3137 - OpenCVE

Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03050.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Ibm	Tivoli Federated Identity Manager Tivoli Federated Identity Manager Business Gateway

Configuration 1 [-]

OR	cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.1:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.2:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.3:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.8:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.1:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.2:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.3:::::::*
	cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.8:::::::*

References

Link	Resource
http://secunia.com/advisories/45555	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IV03050
http://www.ibm.com/support/docview.wss?uid=swg24029497
http://www.ibm.com/support/docview.wss?uid=swg24029498
https://exchange.xforce.ibmcloud.com/vulnerabilities/69203
https://exchange.xforce.ibmcloud.com/vulnerabilities/69204

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2011-08-12T17:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2011-08-12T00:00:00

Link: CVE-2011-3137

JSON object: View

NVD Information

Status : Modified

Published: 2011-08-12T17:55:01.213

Modified: 2017-08-29T01:30:04.847

Link: CVE-2011-3137

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-08-05T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03050."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "IV03050", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV03050"}, {"name": "45555", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45555"}, {"name": "ibm-tfim-console-unspecified(69204)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69204"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/docview.wss?uid=swg24029498"}, {"name": "ibm-tfim-unspecified(69203)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69203"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/docview.wss?uid=swg24029497"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-3137", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03050."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "IV03050", "refsource": "AIXAPAR", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV03050"}, {"name": "45555", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45555"}, {"name": "ibm-tfim-console-unspecified(69204)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69204"}, {"name": "http://www.ibm.com/support/docview.wss?uid=swg24029498", "refsource": "CONFIRM", "url": "http://www.ibm.com/support/docview.wss?uid=swg24029498"}, {"name": "ibm-tfim-unspecified(69203)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69203"}, {"name": "http://www.ibm.com/support/docview.wss?uid=swg24029497", "refsource": "CONFIRM", "url": "http://www.ibm.com/support/docview.wss?uid=swg24029497"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-3137", "datePublished": "2011-08-12T17:00:00", "dateReserved": "2011-08-12T00:00:00", "dateUpdated": "2017-08-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "E508843E-DEA8-433D-AFD5-2730D2745E0B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "0B08471C-D834-4247-87A6-6F9D6777375B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "BF2E0940-AAAF-43CA-A34B-7D7F69D98C15", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "0BFC5237-6ECD-4B6D-AC3D-D32886302CA4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager:6.2.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "5E654796-0374-42DC-8635-8F8AE969B60A", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "1807D56B-4569-47FB-8562-0DA753DCFD89", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "789B771E-5A03-41E8-A7B1-B7AAEA6C2F5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "24EC2003-784F-4CA5-8F16-041B1DFFCCC2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "EA8101A0-DF31-42C6-A72F-3A10ECF588D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_federated_identity_manager_business_gateway:6.2.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "E95282DC-382A-4E4B-A5B9-D554A45339AD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.9 has unknown impact and attack vectors, aka APAR IV03050."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Management Console en IBM Tivoli Federated Identity Manager (TFIM) v6.2.0 anterior a v6.2.0.9 y Tivoli Federated Identity Manager Business Gateway (TFIMBG) v6.2.0 anterior a v6.2.0.9 tiene un impacto desconocido y vectores de ataque, tambi\u00e9n conocido como APAR IV03050."}], "id": "CVE-2011-3137", "lastModified": "2017-08-29T01:30:04.847", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-08-12T17:55:01.213", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/45555"}, {"source": "cve@mitre.org", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV03050"}, {"source": "cve@mitre.org", "url": "http://www.ibm.com/support/docview.wss?uid=swg24029497"}, {"source": "cve@mitre.org", "url": "http://www.ibm.com/support/docview.wss?uid=swg24029498"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69203"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69204"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}