CVE-2018-1719
Description
IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security under certain conditions. This could result in a downgrade of TLS protocol. A remote attacker could exploit this vulnerability to perform man-in-the-middle attacks. IBM X-Force ID: 147292.
CWE
- (none)
Affected
- IBM / WebSphere Application Server — v=8.5 [affected]; v=9.0 [affected]
CVSS
- 3.0 score=5.9 severity=MEDIUM
CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O
References
- http://www.securitytracker.com/id/1041718 vdb-entry, x_refsource_SECTRACK
- https://www.ibm.com/support/docview.wss?uid=ibm10718837 x_refsource_CONFIRM
- https://exchange.xforce.ibmcloud.com/vulnerabilities/147292 vdb-entry, x_refsource_XF
Source
cvelistV5-main/cves/2018/1xxx/CVE-2018-1719.json