Lucene search
IBM40E97BE247E12E6BF0384874474104FF2A266808B681DBD175EEBD047BBF01A5HistoryJul 15, 2019 - 9:35 p.m.
Security Bulletin: Asset Analyzer (RAA) is affected by a WebSphere Application Server vulnerability
2019-07-1521:35:01
www.ibm.com
4
0.002 Low
EPSS
Percentile
58.8%
Summary
Asset Analyzer (RAA) has addressed the following vulnerability. IBM WebSphere Application Server could allow a remote attacker to temporarily gain elevated privileges on the system, caused by incorrect cached value being used.
Vulnerability Details
CVEID:CVE-2018-1901
DESCRIPTION: IBM WebSphere Application Server could allow a remote attacker to temporarily gain elevated privileges on the system, caused by incorrect cached value being used.
CVSS Base Score: 5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/152530> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L)
Affected Products and Versions
| Affected Versions | Affected Versions |
|---|---|
| Rational Asset Analyzer | 6.1.0.1 - 6.1.0.20 |
Remediation/Fixes
| Product | VRMF | APAR | Remediation / First Fix |
|---|---|---|---|
| Rational Asset Analyzer | 6.1.0.21 | None | RAA 6.1.0.21 |
Workarounds and Mitigations
None
Related
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Case Manager (CVE-2018-1901)
2019-01-02 23:55:01
nvd
nvd
CVE-2018-1901
2018-12-12 16:29:01
prion
prion
Code injection
2018-12-12 16:29:00
cvelist
cvelist
CVE-2018-1901
2018-12-10 00:00:00
cve
cve
CVE-2018-1901
2018-12-12 16:29:01
nessus
nessus
0.002 Low
EPSS
Percentile
58.8%
Related for 40E97BE247E12E6BF0384874474104FF2A266808B681DBD175EEBD047BBF01A5