CVE-2012-0701

Published: Jan 31, 2013Modified: Apr 29, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

The client applications in the DataStage Administrator client in InfoSphere DataStage in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 rely on client-side access control, which allows remote authenticated users to gain privileges via unspecified vectors.

Affected (6)

Products: Ibm: Infosphere Datastage, Infosphere Information Server

Ibm

2 products

Infosphere Datastage

Infosphere Information Server

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Datastage	All versions
Ibm Infosphere Information Server	Version 8.1
Ibm Infosphere Information Server	Version 8.5.0.1
Ibm Infosphere Information Server	Version 8.5.0.2
Ibm Infosphere Information Server	Version 8.5
Ibm Infosphere Information Server	Version 8.7

Related CWEs

CWE-264

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73285

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73285

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.