Vulnerability Description
IBM Spectrum Symphony and Platform Symphony 7.1.2 and 7.2.0.2 could allow an authenticated user to execute arbitrary commands due to improper handling of user supplied input. IBM X-Force ID: 143622.
CVSS Score
8.8
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Platform Symphony | 6.1.1 |
| Ibm | Spectrum Symphony | 7.1.2 |
References
- http://www.securityfocus.com/bid/104956Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/143622VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=isg3T1027819Vendor Advisory
- http://www.securityfocus.com/bid/104956Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/143622VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=isg3T1027819Vendor Advisory
FAQ
What is CVE-2018-1595?
CVE-2018-1595 is a vulnerability with a CVSS score of 8.8 (HIGH). IBM Spectrum Symphony and Platform Symphony 7.1.2 and 7.2.0.2 could allow an authenticated user to execute arbitrary commands due to improper handling of user supplied input. IBM X-Force ID: 143622.
How severe is CVE-2018-1595?
CVE-2018-1595 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-1595?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Platform Symphony, Ibm Spectrum Symphony.