Vulnerability Details CVE-2018-1906
IBM InfoSphere Information Server 11.3, 11.5, and 11.7could allow an authenticated user to download code using a specially crafted HTTP request. IBM X-Force ID: 152663.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.3%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
- http://www.securityfocus.com/bid/107735
- https://exchange.xforce.ibmcloud.com/vulnerabilities/152663
- https://www.ibm.com/support/docview.wss?uid=ibm10872320
- http://www.securityfocus.com/bid/107735
- https://exchange.xforce.ibmcloud.com/vulnerabilities/152663
- https://www.ibm.com/support/docview.wss?uid=ibm10872320
Products affected by CVE-2018-1906
-
cpe:2.3:a:ibm:infosphere_information_server:11.3
-
cpe:2.3:a:ibm:infosphere_information_server:11.5
-
cpe:2.3:a:ibm:infosphere_information_server:11.7
-
cpe:2.3:a:ibm:infosphere_information_server_on_cloud:11.5
-
cpe:2.3:a:ibm:infosphere_information_server_on_cloud:11.7