PT-2018-13299 · Ibm · Ibm Spectrum Symphony+1

Andrea Scaduto

Published

2018-08-01

Updated

2019-10-09

CVE-2018-1595

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Spectrum Symphony and Platform Symphony versions 7.1.2 through 7.2.0.2

Description The issue allows an authenticated user to execute arbitrary commands due to improper handling of user-supplied input.

Recommendations For versions 7.1.2 through 7.2.0.2, update to a version that properly handles user-supplied input to prevent arbitrary command execution.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-1595

Affected Products

Ibm Spectrum Symphony

Platform Symphony

PT-2018-13299 · Ibm · Ibm Spectrum Symphony+1

CVE-2018-1595

Related Identifiers

Affected Products

References · 5