CVE-2018-1701

Published: Feb 15, 2019Modified: Nov 21, 2024

8.5

Vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 6.0

Source: NVD

Description

IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application Server. IBM X-Force ID: 145970.

Affected (2)

Products: Ibm: Infosphere Information Server, Infosphere Information Server On Cloud

Ibm

2 products

Infosphere Information Server

Infosphere Information Server On Cloud

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Information Server	Version 11.7
Ibm Infosphere Information Server On Cloud	Version 11.7

References (4)

https://exchange.xforce.ibmcloud.com/vulnerabilities/145970

Source: psirt@us.ibm.com

VDB EntryVendor Advisory

https://www.ibm.com/support/docview.wss?uid=ibm10730555

Source: psirt@us.ibm.com

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/145970

Source: af854a3a-2127-422b-91ae-364da2661108

VDB EntryVendor Advisory

https://www.ibm.com/support/docview.wss?uid=ibm10730555

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.