IBM Security Bulletin: IBM Tivoli Netcool Impact is affected by an Information disclosure of stack trace vulnerability (CVE-2018-1553)
Oct 8, 2018 9:00 am EDT
Categorized: Medium Severity
Share this post:
IBM Tivoli Netcool Impact has addressed the following vulnerability. IBM WebSphere Application Server Liberty which ships in IBM Tivoli Netcool Impact could allow a remote attacker to obtain sensitive information, caused by mishandling of exceptions by the SAML Web SSO feature.
CVE(s): CVE-2018-1553
Affected product(s) and affected version(s):
Affected IBM Tivoli Netcool Impact | Affected Versions |
IBM Tivoli Netcool Impact 7.1.0 | 7.1.0.0 ~ 7.1.0.13 IF06 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10733541
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142890
from IBM Product Security Incident Response Team https://ift.tt/2Qy7qcv