CVE-2018-1517 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2018-1517

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.

Published: Aug 20, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-1517
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
ibm / software_development_kit	8-service_refresh_5	8-service_refresh_5.x
ibm / software_development_kit	7r1-service_refresh_4	7r1-service_refresh_4.x
ibm / software_development_kit	7-service_refresh_10	7-service_refresh_10.x
ibm / software_development_kit	6r1-service_refresh_8	6r1-service_refresh_8.x
ibm / software_development_kit	6-service_refresh_16	6-service_refresh_16.x
ibm / software_development_kit	6.0	6.0.x
ibm / software_development_kit	7.0	7.0.x
ibm / software_development_kit	8.0	8.0.x
redhat / enterprise_linux_desktop	7.0	7.0.x
redhat / enterprise_linux_workstation	7.0	7.0.x
redhat / satellite	5.7	5.7.x
redhat / enterprise_linux_server	7.0	7.0.x
redhat / enterprise_linux_desktop	6.0	6.0.x
redhat / enterprise_linux_server	6.0	6.0.x
redhat / enterprise_linux_workstation	6.0	6.0.x
redhat / satellite	5.6	5.6.x
redhat / satellite	5.8	5.8.x