Vulnerability Details CVE-2018-1428
IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 139073.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 20.9%
CVSS Severity
CVSS v3 Score 6.2
CVSS v2 Score 2.1
References
- http://www.ibm.com/support/docview.wss?uid=swg22013756
- http://www.securityfocus.com/bid/103574
- http://www.securitytracker.com/id/1041012
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139073
- http://www.ibm.com/support/docview.wss?uid=swg22013756
- http://www.securityfocus.com/bid/103574
- http://www.securitytracker.com/id/1041012
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139073
Products affected by CVE-2018-1428
-
cpe:2.3:a:ibm:db2:10.1
-
cpe:2.3:a:ibm:db2:10.5
-
cpe:2.3:a:ibm:db2:11.1
-
cpe:2.3:a:ibm:db2:9.7
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-