CVE-2017-1190

MEDIUM

IBM Emptoris Strategic Supply Management Platform <10.1 - RCE

Title source: llm

Description

IBM Emptoris Strategic Supply Management Platform 10.x and 10.1 could allow a local user with special access roles to execute arbitrary code on the system. By manipulating a configurable property, an attacker could exploit this vulnerability to gain full control over the system. IBM X-Force ID: 123559.

References (2)

Scores

CVSS v3 6.4
EPSS 0.0005
EPSS Percentile 16.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (50)
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
ibm/emptoris_strategic_supply_management
... and 40 more
Published Aug 14, 2017
Tracked Since Feb 18, 2026