admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2016/CVE-2016-03xx/CVE-2016-0321.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

207 lines
7.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2016-0321",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2016-07-17T22:59:00.177",
"lastModified": "2016-11-28T19:53:05.977",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "IBM Personal Communications (aka PCOMM) 6.x before 6.0.17 and 12.x before 12.0.0.1 does not properly restrict credential extraction, which allows local users to discover passwords by leveraging access to the victim account and executing a PowerShell script."
},
{
"lang": "es",
"value": "IBM Personal Communications (tambi\u00e9n conocido como PCOMM) 6.x en versiones anteriores a 6.0.17 y 12.x en versiones anteriores a 12.0.0.1 no restringe correctamente la extracci\u00f3n de credenciales, lo cual permite a usuarios locales descubrir contrase\u00f1as aprovechando el acceso a la cuenta de la v\u00edctima y ejecutando una secuencia de comandos PowerShell."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.5,
"impactScore": 3.6
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"accessVector": "LOCAL",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1
},
"baseSeverity": "LOW",
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:12.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "00FC213B-BC7E-4AB1-BC48-58227BE008FB"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "050B8D11-FA5E-4F70-9934-057479F6260E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "838D216B-5C30-4CFF-9740-A0AB18A281B0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "CA429D0C-CDBF-4864-B661-E13733A84675"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E0730A-8C81-4D5C-B11C-3FBD9AF50FC1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "A007FE4A-C587-4ABC-8E5E-BAA8B9FD10C6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "EF2FCFDF-C876-4630-B899-FEB56BAA4F8D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "5738F6B4-952C-4EFE-868C-53AEB2151224"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "8081C4E7-E42F-4C79-B11F-8280412768D8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "2BF981B9-C7F9-4926-9310-AD30B2E1BFAD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "0F10FF32-B5A5-45EF-B626-F6300644ECE2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E6B6DADA-B769-44CA-A6DF-11DB26831696"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "87BD8E7B-68FD-488C-A2F7-60A9C5A1FA3C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "C540FB24-5B13-4489-8012-052209C3E421"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A66BF474-B69D-4610-85DD-9E79B69B08B7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "8223D044-D8F9-4F43-B44C-F28A19F3275E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "F93907E7-C765-43E6-839F-25C8C8BE5C44"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:personal_communications:6.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "6D1D51A4-4975-436A-B30B-CD950E74EF7B"
}
]
}
]
}
],
"references": [
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT12006",
"source": "psirt@us.ibm.com"
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21981692",
"source": "psirt@us.ibm.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/91751",
"source": "psirt@us.ibm.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink