CyberSec.Space Logo
Back to CVE Browser

CVE-2012-0705

HIGH
7.1
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile33.63th
PublishedJan 31, 2013
Last ModifiedApr 29, 2026

Vulnerability Description

InfoSphere Import Export Manager in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 does not validate unspecified input data, which allows remote authenticated users to execute arbitrary commands via unknown vectors.

Affected Platforms (CPE)

πŸ“¦
Ibm

Infosphere Information Server

= 8.1
πŸ“¦
Ibm

Infosphere Information Server

= 8.5
πŸ“¦
Ibm

Infosphere Information Server

= 8.5.0.1
πŸ“¦
Ibm

Infosphere Information Server

= 8.5.0.2
πŸ“¦
Ibm

Infosphere Information Server

= 8.7
πŸ“¦
Ibm

Infosphere Information Server

= 9.1
πŸ“¦
Ibm

Infosphere Information Server Metabrokers \& Bridges

All versions

References & Advisories

πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21623501
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/73292
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21623501
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/73292

Related Vulnerabilities

CVE-2009-424010.0

Multiple buffer overflows in unspecified setuid executables in the DataStage subsystem in IBM InfoSphere Information Server 8.1 be...

CVE-2020-275839.8

IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticate...

CVE-2012-02049.3

Untrusted search path vulnerability in InfoSphere Import Export Manager 8.1 through 9.1 in InfoSphere Information Server MetaBroke...

CVE-2021-389489.1

IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A ...