Vulnerability Details : CVE-2010-4274
reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership.
Exploit prediction scoring system (EPSS) score for CVE-2010-4274
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-4274
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.4
|
MEDIUM | AV:L/AC:M/Au:N/C:P/I:P/A:P |
3.4
|
6.4
|
NIST |
CWE ids for CVE-2010-4274
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-4274
-
http://securitytracker.com/id?1024736
IBM Systems Director 'reset_diragent_keys' Unsafe File Permissions Lets Local Users Gain Elevated Privileges - SecurityTracker
-
http://www.vupen.com/english/advisories/2010/2978
Webmail | OVH- OVHVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/63238
IBM Systems Director Agent reset_diragent_keys security bypass CVE-2010-4274 Vulnerability Report
-
http://www.securityfocus.com/bid/44839
IBM Systems Director Agent 'reset_diragent_keys' Insecure File Permissions Vulnerability
-
http://www-01.ibm.com/support/docview.wss?uid=isg1IC71821
IBM notice: The page you requested cannot be displayed
Products affected by CVE-2010-4274
- cpe:2.3:a:ibm:director_agent:6.2.0:*:*:*:*:*:*:*