Lucene search
IBM846B0383CD9615E43930AB834FF6127461ED29FE1F8E1709D69CFCCA58444233HistoryJun 17, 2018 - 5:27 a.m.
Security Bulletin: Potential hard-coded password vulnerability affects Rational Publishing Engine
2018-06-1705:27:09
www.ibm.com
12
EPSS
0
Percentile
5.1%
Summary
An undisclosed hard-coded password vulnerability affects Rational Publishing Engine.
Vulnerability Details
CVE ID: CVE-2017-1787**
DESCRIPTION:** IBM Publishing Engine contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials.
CVSS Base Score: 4.4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/137022 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N)
Affected Products and Versions
Rational Publishing Engine 2.1.2
Rational Publishing Engine 6.0.5
Remediation/Fixes
For the 2.1.2 releases, upgrade to version 2.1.2 iFix001 or later:
- Rational Publishing Engine 2.1.2 iFix001
For the 6.0.5 releases, upgrade to version 6.0.5 iFix001 or later: - Rational Publishing Engine 6.0.5 iFix001
- For any prior versions of the products listed above, IBM recommends upgrading to a fixed, supported version/release/platform of the product.
Workarounds and Mitigations
None
Related
prion
prion
Design/Logic Flaw
2018-03-02 17:29:00
cvelist
cvelist
CVE-2017-1787
2018-03-02 17:00:00
nvd
nvd
CVE-2017-1787
2018-03-02 17:29:00
cve
cve
CVE-2017-1787
2018-03-02 17:29:00