CVE-2012-5937

Published Apr 12, 2013

Last updated 3 months ago

CVSS info 9.3

Overview

Description: Unspecified vulnerability in the CLA2 server in IBM Gentran Integration Suite 4.3, Sterling Integrator 5.0 and 5.1, and Sterling B2B Integrator 5.2, as used in IBM Sterling File Gateway 1.1 through 2.2 and other products, allows remote attackers to execute arbitrary commands via unknown vectors.
Source: psirt@us.ibm.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:gentran_integration_suite:4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74605A9A-9487-425E-8B92-1756933A246F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F805BA3A-178D-416E-9DED-4258F71A17C8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_file_gateway:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10586E7E-BDF0-4385-B173-E57056369273"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_file_gateway:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2432CAB0-18D2-4742-81B0-11865FD0EBC4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_file_gateway:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A40AC14-AC2B-4A0D-A9CC-3A00B48D8975"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1554D69E-D68E-46CA-B1F7-C24CAABF58E8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_integrator:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2933DFA-AEBD-4B1A-B91F-1E8BE0DF817F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:sterling_integrator:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8597A678-3633-4F5D-95A9-5AAB168F92B7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References