Lucene search

K
ibm
IBMC52E4F43633A26DE3EC912F6665C082BAA08696723A69DA841FA0065F135AD79
HistoryAug 15, 2018 - 4:37 p.m.

Security Bulletin: Multiple Vulnerabilities found in products bundled with IBM Security Access Manager for Enterprise Single-Sign On

2018-08-1516:37:48
www.ibm.com
18

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

Summary

IBM HTTP Server is shipped as a component of IBM Security Access Manager for Enterprise Single-Sign On.
Information about Security vulnerabilities affecting IBM HTTP Server

Vulnerability Details

Security Bulletin: Information disclosure in IBM HTTP Server (CVE-2017-12613)

Security Bulletin: Multiple vulnerabilities in the IBM HTTP Server (CVE-2017-15710, CVE-2017-15715, CVE-2018-1301)

Security Bulletin: Security Vulnerabilities in IBM HTTP Server (CVE-2017-9798, CVE-2017-12618)

Affected Products and Versions

Product Affected and versions Product Fixed in and versions
ISAM ESSO 8.2.0, WAS Version 7.0
ISAM ESSO 8.2.1, 8.2.2 WAS Version 7.0 & 8.0.0.5

Workarounds and Mitigations

None

How to protect your server from attacks?

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

Related for C52E4F43633A26DE3EC912F6665C082BAA08696723A69DA841FA0065F135AD79