CVE-2020-4347
HIGHIBM Infosphere Information Server - Incorrect Permission Assignment
Title source: ruleDescription
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment. IBM X-Force ID: 178412.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6191679
VDB Entry, Vendor Advisory vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/178412
Scores
CVSS v3
7.3
EPSS
0.0016
EPSS Percentile
36.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-732
Status
published
Products (3)
ibm/infosphere_information_server
11.3
ibm/infosphere_information_server
11.5
ibm/infosphere_information_server
11.7
Published
Apr 16, 2020
Tracked Since
Feb 18, 2026