← back
CVE-2018-1453

CVE-2018-1453

CVSS 8.8 HIGHEPSS 2.1%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.8EPSS 2.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Jun 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security Identity Manager Virtual Appliance 7.0 allows an authenticated attacker to upload or transfer files of dangerous types that can be automatically processed within the environment. IBM X-Force ID: 140055.
CVSS:3.0/A:H/AC:L/AV:N/C:H/I:H/PR:L/S:U/UI:N/E:U/RC:C/RL:O
Affected products
IBM · Security Identity Manager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/140055http://www.ibm.com/support/docview.wss?uid=swg22013617http://www.securitytracker.com/id/1041383