7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
IBM SDK is vulnerable to denial of service (DoS) attacks. The vulnerability exists in the java.math component in IBM SDK. An attacker could cause a denial of service condition with specially crafted String data.
CPE | Name | Operator | Version |
---|---|---|---|
java-1.8.0-ibm | eq | 1.8.0.4.1__1jpp.1.el6_8 | |
java-1.7.1-ibm | eq | 1.7.1.4.1__1jpp.1.el6_8 | |
java-1.7.1-ibm | eq | 1.7.1.3.40__1jpp.1.el6_7 |
www.ibm.com/support/docview.wss?uid=ibm10719653
www.securityfocus.com/bid/105117
access.redhat.com/errata/RHSA-2018:2568
access.redhat.com/errata/RHSA-2018:2569
access.redhat.com/errata/RHSA-2018:2575
access.redhat.com/errata/RHSA-2018:2576
access.redhat.com/errata/RHSA-2018:2712
access.redhat.com/errata/RHSA-2018:2713
access.redhat.com/security/updates/classification/#important
exchange.xforce.ibmcloud.com/vulnerabilities/141681
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P