Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Installation Manager
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-7442 1 Ibm 2 Installation Manager, Packaging Utility 2024-11-21 6.2 MEDIUM 7.0 HIGH
consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value.
CVE-2014-6134 1 Ibm 2 Installation Manager, Rational Clearcase 2024-11-21 1.2 LOW N/A
IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to the installation account.
CVE-2009-3518 1 Ibm 1 Installation Manager 2024-11-21 9.3 HIGH N/A
Argument injection vulnerability in the iim: URI handler in IBMIM.exe in IBM Installation Manager 1.3.2 and earlier, as used in IBM Rational Robot and Rational Team Concert, allows remote attackers to load arbitrary DLL files via the -vm option, as demonstrated by a reference to a UNC share pathname.