CVE-2018-1457

5 documents4 sources

Severity

9.8CRITICAL

EPSS

0.4%

top 41.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Engineering Requirements Management Doors IBM Rational Doors

Timeline

PublishedJun 27

Latest updateMay 13

Description

An undisclosed vulnerability in IBM Rational DOORS 9.5.1 through 9.6.1.10 application allows an attacker to gain DOORS administrator privileges. IBM X-Force ID: 140208.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5ibm/rational_doors38 versions+37

▶NVDibm/engineering_requirements_management_doors9.5.1 — 9.5.1.9+4

🔴Vulnerability Details

GHSA

GHSA-6cwf-cgh6-hrg2: An undisclosed vulnerability in IBM Rational DOORS 9↗2022-05-13

▶

CVEList

CVE-2018-1457: An undisclosed vulnerability in IBM Rational DOORS 9↗2018-06-27

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Edge Chakra JIT - 'Array.prototype.reverse' Array Type Confusion↗2018-02-15

▶

Exploit-DB

Microsoft Edge Chakra JIT - 'NewScObjectNoCtor' Array Type Confusion↗2018-02-15

▶