CVE-2017-1788

Low

Low Medium High Critical

CVSS Score

Published: Mar 22, 2018

Last Modified: Nov 21, 2024

Vulnerability Description

IBM WebSphere Application Server 9 installations using Form Login could allow a remote attacker to conduct spoofing attacks. IBM X-Force ID: 137031.

Known Affected Software

9 configuration(s) from 1 vendor(s)

websphere_application_server

Version:

9.0.0.0

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.0:*:*:*:traditional:*:*:*

websphere_application_server

Version:

9.0.0.4

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.4:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.5

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.5:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.3

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.3:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.6

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.6:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.1

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.1:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.7

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.7:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:*

websphere_application_server

Version:

9.0.0.2

CPE:

cpe:2.3:a:ibm:websphere_application_server:9.0.0.2:*:*:*:*:*:*:*

This vulnerability affects 9 software configuration(s). Ensure you patch all affected systems.

References & Resources

Severity Details

out of 10.0

Low

Weakness Type (CWE)

NVD-CWE-noinfo

View CWE Details on MITRE

Key Information

Published Date: March 22, 2018

External Resources

NIST NVD

National Vulnerability Database

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages

CVE-2017-1788

Vulnerability Description

Known Affected Software

ibm

References & Resources

Severity Details

Weakness Type (CWE)

Key Information

External Resources