Lucene search
K

8 matches found

Check Point Advisories
Check Point Advisories
added 2018/12/25 12:0 a.m.26 views

IBM Operational Decision Manager External Entity Injection (CVE-2018-1821)

An XML external entity XXE injection vulnerability exist in IBM Operational Decision. The vulnerability is due to a failure to properly handle external entity references in XML files. A remote attacker could exploit this vulnerability by enticing a target user into opening a crafted XML file with...

6.4CVSS1.9AI score0.15801EPSS
Exploits5
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/19 2:45 p.m.16 views

Security Bulletin: IBM Operational Decision Manager is affected by CVE-2018-1821 vulnerability

Summary IBM Operational Decision Manager has addressed the vulnerability CVE-2018-1821 Vulnerability Details CVEID: CVE-2018-1821 DESCRIPTION: IBM Operational Decision Manager is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit thi...

9.1CVSS0.9AI score0.15801EPSS
Exploits5Affected Software1
0day.today
0day.today
added 2018/12/19 12:0 a.m.61 views

IBM Operational Decision Manager 8.x - XML External Entity Injection

Exploit for multiple platform in category web applications Exploit Title: XML External Entity Injection XXE Exploit Author: Mohamed M.Fouad - From SecureMisr Company Vendor Homepage: https://www-01.ibm.com/support/docview.wss?uid=ibm10744149 Version: v8.6 - v8.7 - v8.8 - v8.9 REQUIRED Tested on:...

9.1AI score0.15801EPSS
Exploits5
exploitpack
exploitpack
added 2018/12/19 12:0 a.m.61 views

IBM Operational Decision Manager 8.x - XML External Entity Injection

IBM Operational Decision Manager 8.x - XML External Entity Injection Exploit Title: XML External Entity Injection XXE Date: 2018-12-18 Exploit Author: Mohamed M.Fouad - From SecureMisr Company Vendor Homepage: https://www-01.ibm.com/support/docview.wss?uid=ibm10744149 Version: v8.6 - v8.7 - v8.8 ...

6.4CVSS0.2AI score0.15801EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/12/19 12:0 a.m.47 views

IBM Operational Decision Manager 8.x XML Injection

Exploit Title: XML External Entity Injection XXE Date: 2018-12-18 Exploit Author: Mohamed M.Fouad - From SecureMisr Company Vendor Homepage: https://www-01.ibm.com/support/docview.wss?uid=ibm10744149 Version: v8.6 - v8.7 - v8.8 - v8.9 REQUIRED Tested on: Windows 10 CVE : CVE-2018-1821 POC1: Port...

0.1AI score0.15801EPSS
Exploits5
Circl
Circl
added 2018/12/19 12:0 a.m.26 views

CVE-2018-1821

creationtimestamp| type| source ---|---|--- 2018-12-19 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46017...

9.1CVSS6.8AI score0.15801EPSS
Exploits5References1
Cvelist
Cvelist
added 2018/12/13 4:0 p.m.28 views

CVE-2018-1821

IBM Operational Decision Management 8.5, 8.6, 8.7, 8.8, and 8.9 is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 150170...

7.1CVSS9AI score0.15801EPSS
Exploits5References4
CVE
CVE
added 2018/12/13 4:0 p.m.62 views

CVE-2018-1821

CVE-2018-1821 affects IBM Operational Decision Manager (ODM) versions 8.5–8.9, with a XML External Entity (XXE) processing vulnerability that could disclose files or exhaust memory. The IBM advisory/ODM bulletin notes proposed fixes for ODM v8.6–8.9 (interim fixes: 8.6.0.3-WS-ODM_DS-IF035, 8.7.1....

9.1CVSS8.8AI score0.15801EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder