IBMBCE6AB917395CA0DEC6A6F7C445FC402C6C7541521FBA6B638C09E9E706D9F3BSecurity Bulletin: Vulnerability in IBM Java Runtime affect IBM Installation Manager and IBM Packaging Utility
EPSS
Percentile
69.5%
Summary
There is a vulnerability in IBM® Runtime Environment Java™ Version 7 used by IBM Installation Manager and IBM Packaging Utility. The IBM Installation Manager and IBM Packaging Utility have addressed the applicable CVE.
Vulnerability Details
CVEID: CVE-2018-3180
DESCRIPTION: An unspecified vulnerability related to the Java SE JSSE component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and low availability impact.
CVSS Base Score: 5.6
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/151497> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
Affected Products and Versions
IBM Installation Manager and IBM Packaging Utility versions 1.8.9.2 and earlier.
Remediation/Fixes
Product
| VRMF | APAR | Remediation/First Fix
—|—|—|—
IBM Installation Manager and IBM Packaging Utility | 1.8.x |
| 1.8.9.3 IBM Installation Manager Remediation
1.8.9.3 IBM Packaging Utility Remediation
Workarounds and Mitigations
None
Related
EPSS
Percentile
69.5%