CVE-2014-8887

IBM Marketing Operations <8.5.0.7.2, <8.6.0.8, <9.0.0.4.1, <9.1.0.5...

Title source: llm
STIX 2.1

Description

IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to upload arbitrary GIFAR files, and consequently modify data, via unspecified vectors.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21902933
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PO04455
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PO02715
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PO03923

Scores

EPSS 0.0111
EPSS Percentile 62.0%

Details

CWE
CWE-20
Status published
Products (50)
ibm/marketing_operations 7.2.0.0
ibm/marketing_operations 7.2.0.4
ibm/marketing_operations 7.2.1.0
ibm/marketing_operations 7.2.1.12
ibm/marketing_operations 7.3.2.0
ibm/marketing_operations 7.3.2.1
ibm/marketing_operations 7.3.2.8
ibm/marketing_operations 7.4.0.0
ibm/marketing_operations 7.4.0.2
ibm/marketing_operations 7.4.1.0
... and 40 more
Published Jun 07, 2015
Tracked Since Feb 18, 2026