What is CVE-2015-5020?

CVE-2015-5020 is a medium-severity vulnerability in Ibm Infosphere_biginsights, classified under CWE-264. CVSS score: 4.3/10. Published 2016-01-02.

How severe is CVE-2015-5020?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Vulnerability in Ibm Infosphere_biginsights

CVE-2015-5020

The Big SQL component in IBM InfoSphere BigInsights 3.0, 3.0.0.1, 3.0.0.2, and 4.0 allows remote authenticated users to bypass intended access restrictions and truncate arbitrary tables via unspecified vectors.

EPSS: 0.012 (63.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N.

Affected products

Ibm Infosphere_biginsights — versions 3.0.0.0, 3.0.0.1, 3.0.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@us.ibm.com (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2015-5020?: CVE-2015-5020 is a medium-severity vulnerability in Ibm Infosphere_biginsights, classified under CWE-264. CVSS score: 4.3/10. Published 2016-01-02.
How severe is CVE-2015-5020?: Medium severity. CVSS v3 base score is 4.3 out of 10.