Vulnerability Details CVE-2017-1183
IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to modify SQL commands to the Portal Server, when default client-server communications, HTTP, are being used. IBM X-Force ID: 123494.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.4
References
- http://www.ibm.com/support/docview.wss?uid=swg22003402
- http://www.securityfocus.com/bid/99610
- http://www.securitytracker.com/id/1038913
- https://exchange.xforce.ibmcloud.com/vulnerabilities/123494
- http://www.ibm.com/support/docview.wss?uid=swg22003402
- http://www.securityfocus.com/bid/99610
- http://www.securitytracker.com/id/1038913
- https://exchange.xforce.ibmcloud.com/vulnerabilities/123494
Products affected by CVE-2017-1183
-
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.9
-
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3.5
-
cpe:2.3:a:ibm:tivoli_monitoring:6.3.0.7