Public disclosed vulnerability (CVE-2018-11776) from Apache Struts affects IBM Platform Application Center.
DESCRIPTION: Apache Struts namespace code execution
CVSS Base Score: 9.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/148694> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Platform Application Center 9.1.5
Platform Application Center 9.1.4.2
Platform Application Center 9.1.4.1
Platform Application Center 9.1.4
Platform Application Center 9.1.3
Platform Application Center 9.1.2
Platform Application Center 9.1.1
Platform Application Center 9.1
<Product
|
VRMF
|
APAR
|
Remediation/First Fix
—|—|—|—
Platform Application Center
|
9.1.5
|
None
|
See fix below
Platform Application Center
|
9.1.4.2
|
None
|
See fix below
Platform Application Center
|
9.1.4.1
|
None
|
See fix below
Platform Application Center
|
9.1.4
|
None
|
See fix below
Platform Application Center
|
9.1.3
|
None
|
See fix below
Platform Application Center
|
9.1.2
|
None
|
See fix below
Platform Application Center
|
9.1.1
|
None
|
See fix below
Platform Application Center
|
9.1
|
None
|
See fix below
Platform Application Center 9.1.5, 9.1.4.2, 9.1.4.1, 9.1.4, 9.1.3, 9.1.2, 9.1.1, 9.1