CVE-2018-1677

MEDIUM

IBM DataPower Gateways <7.8 - DoS

Title source: llm

Description

IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are vulnerable to a denial of service, caused by the improper handling of full file system. A local attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 145171.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106284

[VDB Entry, Vendor Advisory] https://exchange.xforce.ibmcloud.com/vulnerabilities/145171

[Patch, Vendor Advisory] https://www.ibm.com/support/docview.wss?uid=ibm10744555

Scores

CVSS v3 5.1

EPSS 0.0005

EPSS Percentile 14.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-755

Status published

Affected Products (1)

ibm/datapower_gateway < 7.1.0.22

Timeline

Published Dec 20, 2018

Tracked Since Feb 18, 2026