IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 uses weak permissions for unspecified resources, which allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.
http://www.securityfocus.com/bid/93077
http://www-01.ibm.com/support/docview.wss?uid=swg21989205
Source: Mitre, NVD
Published: 2016-09-26
Updated: 2026-06-17
Base Score: 4.9
Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:N
Severity: Medium
Base Score: 6.8
Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS: 0.00117