Vulnerability Description
IBM Security Identity Manager 6.0.0 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 153750.
CVSS Score
9.0
CRITICAL
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Security Identity Manager | >= 6.0.0, <= 6.0.0.20 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/106554Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/153750VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=ibm10794615PatchVendor Advisory
- http://www.securityfocus.com/bid/106554Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/153750VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=ibm10794615PatchVendor Advisory
FAQ
What is CVE-2018-1969?
CVE-2018-1969 is a vulnerability with a CVSS score of 9.0 (CRITICAL). IBM Security Identity Manager 6.0.0 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 153750.
How severe is CVE-2018-1969?
CVE-2018-1969 has been rated CRITICAL with a CVSS base score of 9.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-1969?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Security Identity Manager.