Vulnerability Details CVE-2018-1683
IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, caused by the failure to encrypt ORB communication. IBM X-Force ID: 145455.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.9%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 5.0
References
- http://www.securitytracker.com/id/1041720
- https://exchange.xforce.ibmcloud.com/vulnerabilities/145455
- https://www.ibm.com/support/docview.wss?uid=ibm10716533
- http://www.securitytracker.com/id/1041720
- https://exchange.xforce.ibmcloud.com/vulnerabilities/145455
- https://www.ibm.com/support/docview.wss?uid=ibm10716533
Products affected by CVE-2018-1683
-
cpe:2.3:a:ibm:websphere_application_server:-
-
cpe:2.3:a:ibm:websphere_application_server:16.0.0.2
-
cpe:2.3:a:ibm:websphere_application_server:16.0.0.3
-
cpe:2.3:a:ibm:websphere_application_server:16.0.0.4
-
cpe:2.3:a:ibm:websphere_application_server:17.0.0.1
-
cpe:2.3:a:ibm:websphere_application_server:17.0.0.2
-
cpe:2.3:a:ibm:websphere_application_server:17.0.0.3
-
cpe:2.3:a:ibm:websphere_application_server:17.0.0.4
-
cpe:2.3:a:ibm:websphere_application_server:18.0.0.1
-
cpe:2.3:a:ibm:websphere_application_server:18.0.0.2
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.13
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.4
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.5
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.6
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.7
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.8
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.9