CVE-2016-5991

MEDIUM

IBM Sterling Connect:Direct <4.6.0.6-4.7.0.4 - Privilege Escalation

Title source: llm

Description

IBM Sterling Connect:Direct 4.5.00, 4.5.01, 4.6.0 before 4.6.0.6 iFix008, and 4.7.0 before 4.7.0.4 on Windows allows local users to gain privileges via unspecified vectors.

References (3)

Scores

CVSS v3 4.5
EPSS 0.0006
EPSS Percentile 17.8%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

CWE
CWE-264
Status published

Affected Products (5)

ibm/sterling_connect\
ibm/sterling_connect\
ibm/sterling_connect\
ibm/sterling_connect\
n/a/n/a

Timeline

Published Nov 25, 2016
Tracked Since Feb 18, 2026