2 matches found
CVE-2018-1666
CVE-2018-1666 affects IBM DataPower/DataPower Gateway UI message rendering. A authenticated user could inject arbitrary messages displayed in the UI. Affected products/versions include IBM DataPower Gateway 2018.4.1.0, 7.6.0.0–7.6.0.11, 7.5.2.0–7.5.2.18, 7.5.1.0–7.5.1.18, 7.5.0.0–7.5.0.19, and 7....
Security Bulletin: IBM DataPower Gateway is affected by a message injection vulnerability (CVE-2018-1666)
Summary IBM DataPower Gateway has addressed the following vulnerability: CVE-2018-1666 Vulnerability Details CVEID: CVE-2018-1666 DESCRIPTION: IBM WebSphere DataPower Appliances could allow an authenticated user to inject arbitrary messages that would be displayed on the UI. CVSS Base Score: 4.3...