Lucene search
IBM7AC6030743C5392B5FE8DD9CFCDACAF0EF785457DA232029958FB91FD4DD8454HistoryFeb 22, 2019 - 5:30 p.m.
Security Bulletin: Financial Transaction Manager for Corporate Payment Services for Multi-Platform v2.1.1 is affected by a potential directory listing of internal product files vulnerability (CVE-2018-2026)
2019-02-2217:30:01
www.ibm.com
9
EPSS
0.001
Percentile
35.9%
Summary
Financial Transaction Manager for Corporate Payment Services for Multi-Platform (FTM CPS) has addressed the following vulnerability. A potential directory listing vulnerability could allow an authenticated user to obtain a directory listing of internal product files.
Vulnerability Details
CVEID: CVE-2018-2026 DESCRIPTION: IBM Fnancial Transaction Manager for Digital Payments could allow an authenticated user to obtain a directory listing of internal product files.
CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/155552> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
FTM CPS v2.1.1.0 - 2.1.1.4
Remediation/Fixes
| Product | VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| FTM CPS | 2.1.1.0 - 2.1.1.4 | PH07383 | 2.1.1-FTM-CPS-MP-fp0005 |
Workarounds and Mitigations
None
Related
ibm
ibm
Security Bulletin: Financial Transaction Manager for Digital Payments is affected by a potential directory listing of internal product files vulnerability (CVE-2018-2026)
2019-07-25 19:55:02
cve
cve
CVE-2018-2026
2019-01-23 16:00:00
cvelist
cvelist
CVE-2018-2026
2019-01-23 16:00:00
prion
prion
Design/Logic Flaw
2019-01-23 15:29:00
nvd
nvd
CVE-2018-2026
2019-01-23 15:29:00
EPSS
0.001
Percentile
35.9%
Related for 7AC6030743C5392B5FE8DD9CFCDACAF0EF785457DA232029958FB91FD4DD8454