CVE-2018-1668
published 2019-01-29CVE-2018-1668: IBM DataPower Gateway 7.5.0.0 through 7.5.0.19, 7.5.1.0 through 7.5.1.18, 7.5.2.0 through 7.5.2.18, and 7.6.0.0 through 7.6.0.11 appliances allows "null"…
high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
IBM DataPower Gateway 7.5.0.0 through 7.5.0.19, 7.5.1.0 through 7.5.1.18, 7.5.2.0 through 7.5.2.18, and 7.6.0.0 through 7.6.0.11 appliances allows "null" logins which could give read access to IPMI data to obtain sensitive information. IBM X-Force ID: 144894.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | 7.5.0.0 – 7.5.0.19 | — |
| ibm | datapower_gateway | 7.5.1.0 – 7.5.1.18 | — |
| ibm | datapower_gateway | 7.5.2.0 – 7.5.2.18 | — |
| ibm | datapower_gateway | 7.6.0.0 – 7.6.0.11 | — |