Local Privilege Escalation in IBM Informix Dynamic Server
CVE-2017-1508

6.7MEDIUM

Key Information:

Vendor
IBM
Status
Informix Servers
Vendor
CVE Published:
13 September 2017

Summary

IBM Informix Dynamic Server version 12.1 is susceptible to a local privilege escalation vulnerability. A local user, upon logging in with database administrator credentials, may exploit this flaw to gain root privileges on the system, potentially compromising security and allowing unauthorized access to sensitive data. For detailed information, please refer to the IBM support documentation and security resources.

Affected Version(s)

Informix Servers 12.1

References

http://www.ibm.com/support/docview.wss?uid=swg22006872
x_refsource_CONFIRM
http://www.securityfocus.com/bid/100820
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/129620
x_refsource_MISC

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.