CVE-2012-5938

The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via standard filesystem operations.

Published: Mar 20, 2013
Updated: Apr 13, 2023
CVE: CVE-2012-5938
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / infosphere_information_server	8.1	8.1.x
ibm / infosphere_information_server	8.5	8.5.x
ibm / infosphere_information_server	8.7	8.7.x
ibm / infosphere_information_server	9.1	9.1.x

http://www.ibm.com/support/docview.wss?uid=swg21628844
https://exchange.xforce.ibmcloud.com/vulnerabilities/80493

Vulnerability Database

289,784

CVE-2012-5938