CVE-2018-1652

MEDIUM

IBM DataPower Gateway <7.6.0.3 - DoS

Title source: llm
STIX 2.1

Description

IBM DataPower Gateway 7.1.0.0 through 7.1.0.19, 7.2.0.0 through 7.2.0.16, 7.5.0.0 through 7.5.0.10, 7.5.1.0 through 7.5.1.9, 7.5.2.0 through 7.5.2.9, and 7.6.0.0 through 7.6.0.2 and IBM MQ Appliance 8.0.0.0 through 8.0.0.8 and 9.0.1 through 9.0.5 could allow a local user to cause a denial of service through unknown vectors. IBM X-Force ID: 144724.

References (3)

Core 3
Core References
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/144724
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/docview.wss?uid=ibm10717483
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/docview.wss?uid=ibm10744557

Scores

CVSS v3 6.2
EPSS 0.0037
EPSS Percentile 29.2%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (3)
ibm/datapower_gateway 7.1.0.0 - 7.1.0.19
ibm/mq_appliance 8.0.0.0 - 8.0.0.8
ibm/mq_appliance 9.0.1 - 9.0.5
Published Dec 11, 2018
Tracked Since Feb 18, 2026