Executive Summary

Informations
NameCVE-2018-1464First vendor Publication2018-05-17
VendorCveLast vendor Modification2018-06-15

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:P/I:N/A:N)
Cvss Base Score4Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score8AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1) could allow an authenticated user to obtain sensitive information that they should not have authorization to read. IBM X-Force ID: 140395.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1464

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application60
Application60
Application153
Application153
Application153
Application153
Application153
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/104349
CONFIRM http://www.ibm.com/support/docview.wss?uid=ssg1S1012263
http://www.ibm.com/support/docview.wss?uid=ssg1S1012282
http://www.ibm.com/support/docview.wss?uid=ssg1S1012283
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/140395

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2018-06-16 00:19:26
  • Multiple Updates
2018-06-05 09:19:26
  • Multiple Updates
2018-05-18 00:19:18
  • First insertion