admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2018/1xxx/CVE-2018-1546.json

145 lines
5.5 KiB
JSON
Raw Normal View History

- Synchronized data.
2017-12-13 17:04:27 -05:00
{
"-Synchronized-Data."
2019-03-18 02:20:42 +00:00
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2018-07-02T00:00:00",
"ID": "CVE-2018-1546",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "API Connect",
"version": {
"version_data": [
{
"version_value": "5.0.1.0"
},
{
"version_value": "5.0.0.0"
},
{
"version_value": "5.0.2.0"
},
{
"version_value": "5.0.5.0"
},
{
"version_value": "5.0.6.0"
},
{
"version_value": "5.0.6.1"
},
{
"version_value": "5.0.6.2"
},
{
"version_value": "5.0.7.0"
},
{
"version_value": "5.0.7.1"
},
{
"version_value": "5.0.3.0"
},
{
"version_value": "5.0.4.0"
},
{
"version_value": "5.0.7.2"
},
{
"version_value": "5.0.6.3"
},
{
"version_value": "5.0.6.4"
},
{
"version_value": "5.0.8.0"
},
{
"version_value": "5.0.8.1"
},
{
"version_value": "5.0.6.5"
},
{
"version_value": "5.0.6.6"
},
{
"version_value": "5.0.8.2"
},
{
"version_value": "5.0.8.3"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
IBM20180706-83226 Added CVE-2017-1509, CVE-2017-1237, CVE-2018-1556, CVE-2018-1542, CVE-2017-1329, CVE-2017-1239, CVE-2017-1559, CVE-2017-1242, CVE-2017-1238, CVE-2018-1494, CVE-2018-1555, CVE-2018-1621, CVE-2018-1546, CVE-2018-1676, CVE-2017-1248, CVE-2017-1795, CVE-2017-1488
2018-07-06 08:32:26 -04:00
{
"-Synchronized-Data."
2019-03-18 02:20:42 +00:00
"lang": "eng",
"value": "IBM API Connect 5.0.0.0 through 5.0.8.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 142650."
IBM20180706-83226 Added CVE-2017-1509, CVE-2017-1237, CVE-2018-1556, CVE-2018-1542, CVE-2017-1329, CVE-2017-1239, CVE-2017-1559, CVE-2017-1242, CVE-2017-1238, CVE-2018-1494, CVE-2018-1555, CVE-2018-1621, CVE-2018-1546, CVE-2018-1676, CVE-2017-1248, CVE-2017-1795, CVE-2017-1488
2018-07-06 08:32:26 -04:00
}
"-Synchronized-Data."
2019-03-18 02:20:42 +00:00
]
},
"impact": {
"cvssv3": {
"BM": {
"A": "N",
"AC": "H",
"AV": "N",
"C": "H",
"I": "N",
"PR": "N",
"S": "U",
"SCORE": "5.900",
"UI": "N"
},
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ibm-api-cve20181546-info-disc(142650)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/142650"
},
{
"name": "https://www-prd-trops.events.ibm.com/node/715299",
"refsource": "CONFIRM",
"url": "https://www-prd-trops.events.ibm.com/node/715299"
}
]
}
}
Reference in New Issue Copy Permalink