Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8896

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-8896
Last Modified 22 Dec 2014 02:20:16
Published 22 Dec 2014 11:59:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-8896

Summary

The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modify the administrator's credentials and consequently gain privileges via unspecified vectors.

Vulnerable Systems

Application

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0.1

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0.2

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0.3

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0.4

  • Ibm Infosphere Master Data Management Collaborative Server 10.0.0.5

  • Ibm Infosphere Master Data Management Collaborative Server 10.1.0

  • Ibm Infosphere Master Data Management Collaborative Server 11.0

  • Ibm Infosphere Master Data Management Collaborative Server 11.3

  • Ibm Infosphere Master Data Management Collaborative Server 11.4

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.1

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.2

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.3

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.4

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.5

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.6

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.7

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.0.0.8

  • Ibm Infosphere Master Data Management Server For Product Information Management 9.1.0


References

XF - ibm-infospheremdm-cve20148896-priv-esc(99049)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21692176


Last Updated: 27 May 2016 11:07:20