CVE-2015-5043 - OpenCVE

diag in IBM Security Guardium 8.2 before p6015, 9.0 before p6015, 9.1, 9.5, and 10.0 before p6015 allows local users to obtain root access via unspecified key sequences.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Ibm	Security Guardium

Configuration 1 [-]

OR	cpe:2.3:a:ibm:security_guardium:8.2:::::::*
	cpe:2.3:a:ibm:security_guardium:9.0:::::::*
	cpe:2.3:a:ibm:security_guardium:9.1:::::::*
	cpe:2.3:a:ibm:security_guardium:9.5:::::::*
	cpe:2.3:a:ibm:security_guardium:10.0:::::::*

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg21968616	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: ibm

Published: 2015-11-08T22:00:00

Updated: 2015-11-08T21:57:01

Reserved: 2015-06-24T00:00:00

Link: CVE-2015-5043

JSON object: View

NVD Information

Status : Analyzed

Published: 2015-11-08T22:59:17.563

Modified: 2015-11-09T20:12:03.703

Link: CVE-2015-5043

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:security_guardium:8.2:*:*:*:*:*:*:*", "matchCriteriaId": "57130C1B-80A6-4A33-8AD3-5C6F4669F3E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_guardium:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "64C62744-22BD-4038-8257-822ADDAC370D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_guardium:9.1:*:*:*:*:*:*:*", "matchCriteriaId": "26EA5CC2-F4BE-4F22-AC85-1956EFA88B66", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_guardium:9.5:*:*:*:*:*:*:*", "matchCriteriaId": "37342DD2-055B-429C-9231-2D9FE70B5AE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_guardium:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "552A0A69-388F-4842-A882-78F267D4BF09", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "diag in IBM Security Guardium 8.2 before p6015, 9.0 before p6015, 9.1, 9.5, and 10.0 before p6015 allows local users to obtain root access via unspecified key sequences."}, {"lang": "es", "value": "diag en IBM Security Guardium 8.2 en versiones anteriores a p6015, 9.0 en versiones anteriores a p6015, 9.1, 9.5 y 10.0 en versiones anteriores a p6015 permiten a usuarios locales obtener acceso root a trav\u00e9s de una secuencia de teclas no especificada."}], "id": "CVE-2015-5043", "lastModified": "2015-11-09T20:12:03.703", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-11-08T22:59:17.563", "references": [{"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21968616"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}