CVE-2018-1664

🗓️ 25 Sep 2018 16:00:00Reported by ibmType

IBM DataPower Gateway versions 7.1.0.0 - 7.6.0.8 and CD 7.7.0.0 - 7.7.1.2 allow exposure of login credential

Reporter	Title	Published	Views	Family All 6
IBM Security Bulletins	Security Bulletin: IBM DataPower Gateways management interface is affected by a vulnerability (CVE-2018-1664)	25 Sep 201814:05	–	ibm
CNVD	IBM DataPower Gateway Information Disclosure Vulnerability	27 Sep 201800:00	–	cnvd
Cvelist	CVE-2018-1664	25 Sep 201816:00	–	cvelist
EUVD	EUVD-2018-12243	7 Oct 202500:30	–	euvd
NVD	CVE-2018-1664	25 Sep 201815:29	–	nvd
Prion	Authorization	25 Sep 201815:29	–	prion

NVD

Vulners

Node

ibm datapower_gatewayRange7.1.0.0–7.1.0.23

ibm datapower_gatewayRange7.2.0.0–7.2.0.21

ibm datapower_gatewayRange7.5.0.0–7.5.0.16

ibm datapower_gatewayRange7.5.1.0–7.5.1.15

ibm datapower_gatewayRange7.5.2.0–7.5.2.15

ibm datapower_gatewayRange7.6.0.0–7.6.0.8

ibm datapower_gatewayRange7.7.0.0–7.7.1.2continuous_delivery

[
  {
    "product": "DataPower Gateway CD",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.7.0.0"
      },
      {
        "status": "affected",
        "version": "7.7.1.2"
      }
    ]
  },
  {
    "product": "DataPower Gateways",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.1.0.0"
      },
      {
        "status": "affected",
        "version": "7.1.0.23"
      },
      {
        "status": "affected",
        "version": "7.2.0.0"
      },
      {
        "status": "affected",
        "version": "7.2.0.21"
      },
      {
        "status": "affected",
        "version": "7.5.0.0"
      },
      {
        "status": "affected",
        "version": "7.5.1.0"
      },
      {
        "status": "affected",
        "version": "7.6.0.0"
      },
      {
        "status": "affected",
        "version": "7.5.2.0"
      },
      {
        "status": "affected",
        "version": "7.5.0.16"
      },
      {
        "status": "affected",
        "version": "7.5.1.15"
      },
      {
        "status": "affected",
        "version": "7.6.0.8"
      },
      {
        "status": "affected",
        "version": "7.5.2.15"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/144890
ibm	www.ibm.com/support/docview.wss

21 Nov 2024 04:00Current

7.3High risk

Vulners AI Score7.3

CVSS 22.1

CVSS 36.2 - 7.8

EPSS0.00043