CVE-2014-8896

IBM InfoSphere Master Data Mgmt - Privilege Escalation

Title source: llm

Description

The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modify the administrator's credentials and consequently gain privileges via unspecified vectors.

References (2)

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21692176

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/99049

Scores

EPSS 0.0014

EPSS Percentile 33.9%

Classification

CWE

CWE-287

Status draft

Affected Products (20)

ibm/infosphere_master_data_management_server_for_product_information_management

ibm/infosphere_master_data_management_collaborative_server

... and 5 more

Timeline

Published Dec 22, 2014

Tracked Since Feb 18, 2026