CVE-2018-1652

IBM DataPower Gateway 7.1.0.0 through 7.1.0.19, 7.2.0.0 through 7.2.0.16, 7.5.0.0 through 7.5.0.10, 7.5.1.0 through 7.5.1.9, 7.5.2.0 through 7.5.2.9, and 7.6.0.0 through 7.6.0.2 and IBM MQ Appliance 8.0.0.0 through 8.0.0.8 and 9.0.1 through 9.0.5 could allow a local user to cause a denial of service through unknown vectors. IBM X-Force ID: 144724.

Published: Dec 11, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-1652
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
ibm / datapower_gateway	7.1.0.0	7.1.0.19.x
ibm / datapower_gateway	7.2.0.0	7.2.0.16.x
ibm / datapower_gateway	7.5.0.0	7.5.0.10.x
ibm / datapower_gateway	7.5.1.0	7.5.1.9.x
ibm / datapower_gateway	7.5.2.0	7.5.2.9.x
ibm / datapower_gateway	7.6.0.0	7.6.0.2.x
ibm / mq_appliance	9.0.1	9.0.5.x
ibm / mq_appliance	8.0.0.0	8.0.0.8.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/144724
https://www.ibm.com/support/docview.wss?uid=ibm10717483
https://www.ibm.com/support/docview.wss?uid=ibm10744557

Vulnerability Database

290,020

CVE-2018-1652