← back
CVE-2018-1991

CVE-2018-1991

CVSS 2.7 LOWEPSS 1.0%
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2.7EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
22 May 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM API Connect 5.0.0.0, and 5.0.8.6 could could return sensitive information that could provide critical information as to the underlying software stack in CMC UI headers. IBM X-Force ID: 154284.
CVSS:3.0/A:N/S:U/PR:H/AV:N/C:L/I:N/UI:N/AC:L/RC:C/RL:O/E:U
Affected products
IBM · API Connect

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →