cbcvebase.
CVE-2010-1612
published 2010-04-29

CVE-2010-1612: The IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance XB60, and XML Security Gateway XS40 SOA…

PriorityP422medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.75%
75.0th percentile
The IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance XB60, and XML Security Gateway XS40 SOA Appliances before 3.8.0.0, when a QLOGIC Ethernet interface is used, allow remote attackers to cause a denial of service (interface outage) via malformed ICMP packets to the 0.0.0.0 destination IP address.

Affected

81 ranges· showing 25
VendorProductVersion rangeFixed in
ibmwebsphere_datapower_b2b_appliance_xb60<= 3.7.3.10
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_b2b_appliance_xb60
ibmwebsphere_datapower_datapower_integration_appliance_xi50<= 3.7.3.10
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
ibmwebsphere_datapower_datapower_integration_appliance_xi50
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.