PT-2018-12663 · Ibm · Ibm Api Connect'S Developer Portal

Published

2018-04-04

Updated

2019-10-09

CVE-2018-1469

CVSS v3.1

Critical

Vector

A:H/AC:L/AV:N/C:H/I:H/PR:N/S:U/UI:N

Name of the Vulnerable Software and Affected Versions IBM API Connect Developer Portal versions 5.0.0.0 through 5.0.8.2

Description The issue allows an unauthenticated attacker to execute system commands using specially crafted HTTP requests.

Recommendations For versions 5.0.0.0 through 5.0.8.2, update to a version that contains a fix for this issue to prevent system command execution by unauthenticated attackers.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-1469

Affected Products

Ibm Api Connect'S Developer Portal

PT-2018-12663 · Ibm · Ibm Api Connect'S Developer Portal

CVE-2018-1469

Related Identifiers

Affected Products

References · 4