Lucene search
IBM70A2CBF98125BEEE9B6FA45636E2C3D920B9596464E0E4188995EBFFB8348ADCHistoryJan 09, 2019 - 9:15 a.m.
Security Bulletin: Potential Privilege Escalation Vulnerability in WebSphere Application Server shipped with IBM Operations Analytics - Log Analysis (CVE-2018-1901)
2019-01-0909:15:01
www.ibm.com
8
EPSS
0.002
Percentile
58.7%
Summary
WebSphere Application Server could allow a remote attacker to temporarily gain elevated privileges on the system, caused by incorrect cached value being used.
Vulnerability Details
CVEID: CVE-2018-1901
DESCRIPTION: IBM WebSphere Application Server could allow a remote attacker to temporarily gain elevated privileges on the system, caused by incorrect cached value being used.
CVSS Base Score: 5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/152530> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L)
Affected Products and Versions
IBM Operations Analytics - Log Analysis version 1.3.1, 1.3.2, 1.3.3, 1.3.3.1 and 1.3.5
Remediation/Fixes
| Principal Product and Version(s) | Fix details |
|---|---|
| IBM Operations Analytics - Log Analysis version 1.3.1, 1.3.2, 1.3.3, 1.3.3.1 and 1.3.5 | Security Bulletin: Potential Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2018-1901) |
Related
ibm
ibm
Security Bulletin: A vulnerability in IBM WebSphere Application Server and WebSphere Liberty affects IBM Operations Analytics Predictive Insights (CVE-2018-1901)
2018-12-18 05:15:01
prion
prion
Code injection
2018-12-12 16:29:00
cvelist
cvelist
CVE-2018-1901
2018-12-12 16:00:00
nvd
nvd
CVE-2018-1901
2018-12-12 16:29:01
cve
cve
CVE-2018-1901
2018-12-12 16:29:01
nessus
nessus
EPSS
0.002
Percentile
58.7%
Related for 70A2CBF98125BEEE9B6FA45636E2C3D920B9596464E0E4188995EBFFB8348ADC