CVE-2018-1652
published 2018-12-11CVE-2018-1652: IBM DataPower Gateway 7.1.0.0 through 7.1.0.19, 7.2.0.0 through 7.2.0.16, 7.5.0.0 through 7.5.0.10, 7.5.1.0 through 7.5.1.9, 7.5.2.0 through 7.5.2.9, and…
medium5.5CVSS 3.0
AVLACLPRLUINSUCNINAH
IBM DataPower Gateway 7.1.0.0 through 7.1.0.19, 7.2.0.0 through 7.2.0.16, 7.5.0.0 through 7.5.0.10, 7.5.1.0 through 7.5.1.9, 7.5.2.0 through 7.5.2.9, and 7.6.0.0 through 7.6.0.2 and IBM MQ Appliance 8.0.0.0 through 8.0.0.8 and 9.0.1 through 9.0.5 could allow a local user to cause a denial of service through unknown vectors. IBM X-Force ID: 144724.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | datapower_gateway | 7.1.0.0 – 7.1.0.19 | — |
| ibm | datapower_gateway | 7.2.0.0 – 7.2.0.16 | — |
| ibm | datapower_gateway | 7.5.0.0 – 7.5.0.10 | — |
| ibm | datapower_gateway | 7.5.1.0 – 7.5.1.9 | — |
| ibm | datapower_gateway | 7.5.2.0 – 7.5.2.9 | — |
| ibm | datapower_gateway | 7.6.0.0 – 7.6.0.2 | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | datapower_gateways | — | — |
| ibm | mq_appliance | — | — |
| ibm | mq_appliance | — | — |
| ibm | mq_appliance | — | — |
| ibm | mq_appliance | — | — |
| ibm | mq_appliance | 8.0.0.0 – 8.0.0.8 | — |
| ibm | mq_appliance | 9.0.1 – 9.0.5 | — |
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
cisa9.8CRITICAL