Vulnerabilities > CVE-2012-4818 - Unspecified vulnerability in IBM Infosphere Information Server 8.1/8.5/8.7
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
IBM InfoSphere Information Server 8.1, 8.5, and 8,7 could allow a remote authenticated attacker to obtain sensitive information, caused by improper restrictions on directories. An attacker could exploit this vulnerability via the DataStage application to load or import content functionality to view arbitrary files on the system.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78651
- https://www.ibm.com/blogs/psirt/security-bulletin-lack-of-path-restriction-may-allow-access-to-sensitive-data-stored-on-ibm-infosphere-information-server-cve-2012-4818/?lnk=hm
- https://www.ibm.com/blogs/psirt/security-bulletin-lack-of-path-restriction-may-allow-access-to-sensitive-data-stored-on-ibm-infosphere-information-server-cve-2012-4818/?lnk=hm