Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM6162D4E2DB77D043F6C8F3040F440A63E546B1CE1D2F81024205FF9EA6BCD032
HistoryMar 23, 2020 - 8:41 p.m.

Security Bulletin: IBM Integration Bus is affected by Web UI security vulnerability (CVE-2017-1694)

2020-03-2320:41:52
www.ibm.com
5

0.002 Low

EPSS

Percentile

51.9%

JSON

Summary

IBM Integration Bus has addressed the following vulnerability

Vulnerability Details

CVEID:CVE-2017-1694**
DESCRIPTION: *IBM Integration Bus transmits user credentials in plain in clear text which can be read by an attacker using man in the middle techniques.
CVSS Base Score: 5.9
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/134165 for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM Integration Bus V10.0.0.0 - V10.0.0.9

IBM Integration Bus V9.0.0.0 - V9.0.0.9

Remediation/Fixes

Product

|

VRMF

|

APAR

|

Remediation / Fix

—|—|—|—
IBM Integration Bus| V10.0.0.0 to V10.0.0.9| APAR IT21391 | The APAR is available in fix pack 10.0.0.10
http://www-01.ibm.com/support/docview.wss?uid=swg24043943
IBM Integration Bus| V9.0.0.0 to V9.0.0.9| APAR IT21391| The APAR is available in fix pack 9.0.0.10
_<http://www-01.ibm.com/support/docview.wss?uid=swg24044363&gt;_

Workarounds and Mitigations

None

Related

cvelist 1
nvd 1
prion 1
cve 1
cvelist
cvelist
CVE-2017-1694
2017-12-15 00:00:00
nvd
nvd
CVE-2017-1694
2017-12-20 18:29:01
prion
prion
Code injection
2017-12-20 18:29:00
cve
cve
CVE-2017-1694
2017-12-20 18:29:01

0.002 Low

EPSS

Percentile

51.9%

JSON
Related for 6162D4E2DB77D043F6C8F3040F440A63E546B1CE1D2F81024205FF9EA6BCD032
cvelist1nvd1prion1cve1