CVE-2018-1675

MEDIUM

IBM Tivoli Application Dependency Discovery Manager < 7.2.2.5 - Information Disclosure

Title source: rule
STIX 2.1

Description

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could expose password hashes in stored in system memory on target systems that are configured to use TADDM. IBM X-Force ID: 145110.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=ibm10742403
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/145110

Scores

CVSS v3 6.8
EPSS 0.0155
EPSS Percentile 72.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (1)
ibm/tivoli_application_dependency_discovery_manager 7.2.2.0 - 7.2.2.5
Published Feb 04, 2019
Tracked Since Feb 18, 2026