{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T15:48:59.702","vulnerabilities":[{"cve":{"id":"CVE-2012-0204","sourceIdentifier":"psirt@us.ibm.com","published":"2013-01-31T12:06:17.707","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Untrusted search path vulnerability in InfoSphere Import Export Manager 8.1 through 9.1 in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory."},{"lang":"es","value":"Vulnerabilidad de búsqueda de ruta no confiable en el Import Export Manager v8.1 hasta v9.1 en InfoSphere Information Server MetaBrokers & Bridges (MBB) en IBM InfoSphere Information Server v8.1, v8.5 anterior a FP3, v8.7, y v9.1 permite a usuarios locales ganar privielgios mediante un troyano DLL en el directorio actual de trabajo."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:8.1:*:*:*:*:*:*:*","matchCriteriaId":"5A85A0D3-1941-4F6B-8787-286A009440DC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:8.1.1:*:*:*:*:*:*:*","matchCriteriaId":"915337FC-0BFD-44FB-A7D2-765E1422DD4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:8.1.2:*:*:*:*:*:*:*","matchCriteriaId":"276EFD18-CD4A-4F1A-AAF2-953F22B075DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:8.5:*:*:*:*:*:*:*","matchCriteriaId":"8DEC85B5-BFB8-4B07-8F63-0752C94E58FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:8.7:*:*:*:*:*:*:*","matchCriteriaId":"27BE8D08-C377-4248-ADB7-69962F5D2C3F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_import_export_manager:9.1:*:*:*:*:*:*:*","matchCriteriaId":"E47D3B91-D36A-4F16-9874-41376887B6D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:8.1:*:*:*:*:*:*:*","matchCriteriaId":"317FAE67-76E2-4084-9393-8A02D255BAF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:8.5:*:*:*:*:*:*:*","matchCriteriaId":"CA7096B4-291F-49BB-8DBC-E67AC901CF08"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:8.5.0.1:*:*:*:*:*:*:*","matchCriteriaId":"D547E88D-FE3F-4C90-B7D8-301A1449E9AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:8.5.0.2:*:*:*:*:*:*:*","matchCriteriaId":"5585D2C4-6575-4469-A6EF-CCDC3A0BEDB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:8.7:*:*:*:*:*:*:*","matchCriteriaId":"42A9CF5C-79EC-4BBF-92AF-2AB3DC125684"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:*","matchCriteriaId":"F3BF0A4B-5DDB-420D-B1F2-8C1ED23F60CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:infosphere_information_server_metabrokers_\\&_bridges:-:*:*:*:*:*:*:*","matchCriteriaId":"81D571DC-7829-4F9C-A959-36E586B4C7C8"}]}]}],"references":[{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21623501","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/73255","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21623501","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/73255","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Per: http://cwe.mitre.org/data/definitions/426.html\r\n\r\n'CWE-426 Untrusted Search Path'","evaluatorImpact":"Per:  http://www-01.ibm.com/support/docview.wss?uid=swg21623501\r\n\r\n\"CVSS Base Score: 9.3  / CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)\r\n\r\na malicious user who has access to a machine with the Import Export Manager installed could execute arbitrary commands in the context of any user who accesses the Import Export Manager application. \""}}]}