CVE-2017-1144

Published: Jul 5, 2017Modified: May 13, 2026

2.5

Vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Exploitability: 1.0 / Impact: 1.4

Source: NVD

Description

IBM WebSphere Message Broker could allow a local user with specialized access to prevent the message broker from starting. IBM X-Force ID: 122033.

Affected (25)

Products: Ibm: Websphere Message Broker, Integration Bus

2 products

Websphere Message Broker

Integration Bus

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Message Broker	Version 8.0.0.1
Ibm Websphere Message Broker	Version 8.0.0.2
Ibm Websphere Message Broker	Version 8.0.0.3
Ibm Websphere Message Broker	Version 8.0.0.4
Ibm Websphere Message Broker	Version 8.0.0.5
Ibm Websphere Message Broker	Version 8.0.0.6
Ibm Websphere Message Broker	Version 8.0.0.7
Ibm Websphere Message Broker	Version 8.0.0.8
Ibm Websphere Message Broker	Version 8.0

Configuration B

16 vulnerable

Vulnerable Software	Affected Versions
Ibm Integration Bus	Version 10.0.0.1
Ibm Integration Bus	Version 10.0.0.2
Ibm Integration Bus	Version 10.0.0.3
Ibm Integration Bus	Version 10.0.0.4
Ibm Integration Bus	Version 10.0.0.5
Ibm Integration Bus	Version 10.0.0.6
Ibm Integration Bus	Version 10.0.0.7
Ibm Integration Bus	Version 10.0
Ibm Integration Bus	Version 9.0.0.1
Ibm Integration Bus	Version 9.0.0.2
Ibm Integration Bus	Version 9.0.0.3
Ibm Integration Bus	Version 9.0.0.4
Ibm Integration Bus	Version 9.0.0.5
Ibm Integration Bus	Version 9.0.0.6
Ibm Integration Bus	Version 9.0.0.7
Ibm Integration Bus	Version 9.0

Related CWEs

Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

References (6)

http://www.ibm.com/support/docview.wss?uid=swg22005383

Source: psirt@us.ibm.com

Vendor Advisory

http://www.securityfocus.com/bid/99365

Source: psirt@us.ibm.com

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/122033

Source: psirt@us.ibm.com

VDB EntryVendor Advisory

http://www.ibm.com/support/docview.wss?uid=swg22005383

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/99365

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/122033

Source: af854a3a-2127-422b-91ae-364da2661108

VDB EntryVendor Advisory

Timeline

No history available yet.