Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
BID:104511
CVE-2018-1447 |Info
Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
| Bugtraq ID: | 104511 |
| Class: | Design Error |
| CVE: |
CVE-2018-1447 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 27 2018 12:00AM |
| Updated: | Dec 19 2018 12:00PM |
| Credit: | IBM |
| Vulnerable: |
IBM Vios 2.2.3 IBM Vios 2.2.1 4 IBM Vios 2.2 IBM Vios 2.2.4.0 IBM Vios 2.2.3.50 IBM Vios 2.2.3.4 IBM Vios 2.2.3.3 IBM Vios 2.2.3.2 IBM Vios 2.2.3.0 IBM Vios 2.2.2.6 IBM Vios 2.2.2.5 IBM Vios 2.2.2.4 IBM Vios 2.2.2.0 IBM Vios 2.2.2.0 IBM Vios 2.2.1.9 IBM Vios 2.2.1.8 IBM Vios 2.2.1.3 IBM Vios 2.2.1.1 IBM Vios 2.2.1.0 IBM Vios 2.2.0.13 IBM Vios 2.2.0.12 IBM Vios 2.2.0.11 IBM Vios 2.2.0.10 IBM DB2 9.8 IBM DB2 9.7 IBM DB2 11.1 IBM DB2 10.5 IBM DB2 10.1 IBM Content Manager OnDemand for Multiplatforms 9.5 IBM Content Manager OnDemand for Multiplatforms 9.0 IBM Content Manager OnDemand for Multiplatforms 10.0 IBM Aix 7.2 IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 |
| Not Vulnerable: |
IBM Content Manager OnDemand for Multiplatforms 9.5.0.11 IBM Content Manager OnDemand for Multiplatforms 10.1.0.3 |
Discussion
Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
Multiple IBM Products are prone to an local information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information that may lead to further attacks.
Multiple IBM Products are prone to an local information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information that may lead to further attacks.
Exploit / POC
Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Multiple IBM Products CVE-2018-1447 Local Information Disclosure Vulnerability
References:
References:
- IBM Homepage (IBM)
- Published Security Vulnerabilities for DB2 for Linux, UNIX, and Windows includin (IBM)
- Security Bulletin: Vulnerabilities in GSKit affect IBM Tivoli Directory (IBM)
- swg22014722: A vulnerability in GSKit and GSKit-Crypto Security affect Content M (IBM)
- Vulnerabilities in GSKit affect IBM Spectrum Scale used by DB2® pureScale�?� (CVE- (IBM)