2 matches found
CVE-2018-1845
CVE-2018-1845 affects IBM InfoSphere Information Server versions 11.3, 11.5, and 11.7. The issue is a XML External Entity Injection (XXE) when processing XML data, enabling a remote attacker to expose sensitive information or cause memory/resource exhaustion. Public-connected sources (IBM securit...
Security Bulletin: IBM InfoSphere Information Server is affected by a XXE (XML External Entity) Injection vulnerability
Summary An XXE XML External Entity Injection vulnerability was addressed by IBM InfoSphere Information Server. Vulnerability Details CVEID: CVE-2018-1845 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote...