Vulnerability-Lookup

CVE-2014-3099 (GCVE-0-2014-3099)

Vulnerability from cvelistv5 – Published: 2014-12-06 15:00 – Updated: 2024-08-06 10:35

Summary

Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.

Severity ?

No CVSS data available.

CWE

Assigner

ibm

References

URL

Tags

	http://www-01.ibm.com/support/docview.wss?rs=0&ui…	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/71426	vdb-entryx_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.ibm.com/support/entry/portal/docdispla…	x_refsource_CONFIRM
	http://www-01.ibm.com/support/docview.wss?uid=swg…	vendor-advisoryx_refsource_AIXAPAR

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T10:35:55.921Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
          },
          {
            "name": "71426",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/71426"
          },
          {
            "name": "ibm-systemsdirector-cve20143099-info-disc(94267)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
          },
          {
            "name": "IT04508",
            "tags": [
              "vendor-advisory",
              "x_refsource_AIXAPAR",
              "x_transferred"
            ],
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2014-12-02T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
        },
        {
          "name": "71426",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/71426"
        },
        {
          "name": "ibm-systemsdirector-cve20143099-info-disc(94267)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
        },
        {
          "name": "IT04508",
          "tags": [
            "vendor-advisory",
            "x_refsource_AIXAPAR"
          ],
          "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "ID": "CVE-2014-3099",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9",
              "refsource": "CONFIRM",
              "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
            },
            {
              "name": "71426",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/71426"
            },
            {
              "name": "ibm-systemsdirector-cve20143099-info-disc(94267)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
            },
            {
              "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586",
              "refsource": "CONFIRM",
              "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
            },
            {
              "name": "IT04508",
              "refsource": "AIXAPAR",
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2014-3099",
    "datePublished": "2014-12-06T15:00:00",
    "dateReserved": "2014-04-29T00:00:00",
    "dateUpdated": "2024-08-06T10:35:55.921Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2014-3099\",\"sourceIdentifier\":\"psirt@us.ibm.com\",\"published\":\"2014-12-06T15:59:00.077\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente Security en IBM Systems Director 6.3.0 hasta 6.3.5 permite a usuarios locales obtener informaci\u00f3n sensible a trav\u00e9s de vectores desconocidos.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7C028E9-5992-43C0-AF73-BB3A9BCD2849\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D639AD14-D731-48A4-80F0-E7ED04CD49A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE04E203-737E-48D6-8D1F-CF6E2E9D4802\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E74C31F-B9D6-4A6A-9138-9A91D9C23886\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BEC1AE7-2B3E-4D6B-AA4C-5D59631AB2AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AFB98D4-D377-4A0E-B07B-7551127283CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81A2825F-BA4E-4273-A456-78F76A8A6894\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F46E54C-F7A6-4944-AE98-015A5EED3BFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:systems_director:6.3.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A84BFC5C-C1D8-4387-9EEB-9412D83343C5\"}]}]}],\"references\":[{\"url\":\"http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://www.securityfocus.com/bid/71426\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/94267\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/71426\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/94267\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GSD-2014-3099

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.

Aliases

CVE-2014-3099

Aliases

CVE-2014-3099

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-3099",
    "description": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.",
    "id": "GSD-2014-3099"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-3099"
      ],
      "details": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.",
      "id": "GSD-2014-3099",
      "modified": "2023-12-13T01:22:53.640741Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@us.ibm.com",
        "ID": "CVE-2014-3099",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9",
            "refsource": "CONFIRM",
            "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
          },
          {
            "name": "71426",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/71426"
          },
          {
            "name": "ibm-systemsdirector-cve20143099-info-disc(94267)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
          },
          {
            "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586",
            "refsource": "CONFIRM",
            "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
          },
          {
            "name": "IT04508",
            "refsource": "AIXAPAR",
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:systems_director:6.3.3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "ID": "CVE-2014-3099"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "71426",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/71426"
            },
            {
              "name": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
            },
            {
              "name": "IT04508",
              "refsource": "AIXAPAR",
              "tags": [],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
            },
            {
              "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
            },
            {
              "name": "ibm-systemsdirector-cve20143099-info-disc(94267)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": true,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-29T01:34Z",
      "publishedDate": "2014-12-06T15:59Z"
    }
  }
}

GHSA-G6FC-CMQH-MH4P

Vulnerability from github – Published: 2022-05-17 01:25 – Updated: 2022-05-17 01:25

Details

Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-3099"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2014-12-06T15:59:00Z",
    "severity": "LOW"
  },
  "details": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.",
  "id": "GHSA-g6fc-cmqh-mh4p",
  "modified": "2022-05-17T01:25:33Z",
  "published": "2022-05-17T01:25:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3099"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
    },
    {
      "type": "WEB",
      "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
    },
    {
      "type": "WEB",
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
    },
    {
      "type": "WEB",
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/71426"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2014-3099

Vulnerability from fkie_nvd - Published: 2014-12-06 15:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors.

References

URL	Tags
psirt@us.ibm.com	http://www-01.ibm.com/support/docview.wss?rs=0&uid=nas76c9e0fe437973f6c86257d48003b00b9	Vendor Advisory
psirt@us.ibm.com	http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508
psirt@us.ibm.com	http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586
psirt@us.ibm.com	http://www.securityfocus.com/bid/71426
psirt@us.ibm.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/94267
af854a3a-2127-422b-91ae-364da2661108	http://www-01.ibm.com/support/docview.wss?rs=0&uid=nas76c9e0fe437973f6c86257d48003b00b9	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/71426
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/94267

Impacted products

Vendor	Product	Version
ibm	systems_director	6.3.0.0
ibm	systems_director	6.3.1.0
ibm	systems_director	6.3.1.1
ibm	systems_director	6.3.2.0
ibm	systems_director	6.3.2.1
ibm	systems_director	6.3.2.2
ibm	systems_director	6.3.3.0
ibm	systems_director	6.3.3.1
ibm	systems_director	6.3.5.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7C028E9-5992-43C0-AF73-BB3A9BCD2849",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D639AD14-D731-48A4-80F0-E7ED04CD49A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE04E203-737E-48D6-8D1F-CF6E2E9D4802",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E74C31F-B9D6-4A6A-9138-9A91D9C23886",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4BEC1AE7-2B3E-4D6B-AA4C-5D59631AB2AD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AFB98D4-D377-4A0E-B07B-7551127283CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "81A2825F-BA4E-4273-A456-78F76A8A6894",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F46E54C-F7A6-4944-AE98-015A5EED3BFE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:systems_director:6.3.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A84BFC5C-C1D8-4387-9EEB-9412D83343C5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el componente Security en IBM Systems Director 6.3.0 hasta 6.3.5 permite a usuarios locales obtener informaci\u00f3n sensible a trav\u00e9s de vectores desconocidos."
    }
  ],
  "id": "CVE-2014-3099",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-12-06T15:59:00.077",
  "references": [
    {
      "source": "psirt@us.ibm.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "http://www.securityfocus.com/bid/71426"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=nas76c9e0fe437973f6c86257d48003b00b9"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT04508"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096586"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/71426"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94267"
    }
  ],
  "sourceIdentifier": "psirt@us.ibm.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2014-3099 (GCVE-0-2014-3099)

GSD-2014-3099

GHSA-G6FC-CMQH-MH4P

FKIE_CVE-2014-3099

Tags

Sightings

Nomenclature