What is CVE-2018-1420?

CVE-2018-1420 is a medium-severity vulnerability in Ibm Websphere Portal. CVSS score: 5.3/10. Published 2018-10-01.

How severe is CVE-2018-1420?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Ibm Websphere Portal

CVE-2018-1420

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 resets access control settings to the out of the box configuration during Combined Cumulative Fix (CF) installation. This can lead to security miss-configuration of the installation. IBM X-Force…

EPSS: 0.001 (34.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/A:N/AC:H/AV:N/C:N/I:H/PR:L/S:U/UI:N/E:U/RC:C/RL:O.

Affected products

Ibm Websphere Portal — versions 7.0, 8.0, 9.0

References

ibm-websphere-cve20181420-improper-access(138950) (vdb-entry, x_refsource_XF)
www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
1041767 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2018-1420?: CVE-2018-1420 is a medium-severity vulnerability in Ibm Websphere Portal. CVSS score: 5.3/10. Published 2018-10-01.
How severe is CVE-2018-1420?: Medium severity. CVSS v3 base score is 5.3 out of 10.