CVE-2018-1991
CVE-2018-1991
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2.7EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
22 May 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM API Connect 5.0.0.0, and 5.0.8.6 could could return sensitive information that could provide critical information as to the underlying software stack in CMC UI headers. IBM X-Force ID: 154284.
CVSS:3.0/A:N/S:U/PR:H/AV:N/C:L/I:N/UI:N/AC:L/RC:C/RL:O/E:U
Affected products
IBM · API ConnectWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →