Design/Logic Flaw

2019-11-2216:15:00

PRIOn knowledge base

www.prio-n.com

4.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.6%

JSON

IBM SmartCloud Analytics 1.3.1 through 1.3.5 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM X-Force ID: 159187.

CPENameOperatorVersion
smartcloud_analytics_log_analysisge1.3.1
smartcloud_analytics_log_analysisle1.3.5

CPE	Name	Operator	Version
	smartcloud_analytics_log_analysis	ge	1.3.1
	smartcloud_analytics_log_analysis	le	1.3.5

References

exchange.xforce.ibmcloud.com/vulnerabilities/159187

www.ibm.com/support/pages/node/1109745