vulnerability

IBM Java: IBM Security Update August 2018 (CVE-2018-1517)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Aug 20, 2018	Oct 5, 2018	Oct 24, 2018

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Aug 20, 2018

Added

Oct 5, 2018

Modified

Oct 24, 2018

Description

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.

Solutions

ibm-java-upgrade-6_0_16_70ibm-java-upgrade-6_1_8_70ibm-java-upgrade-7_0_10_30ibm-java-upgrade-7_1_4_30ibm-java-upgrade-8_0_5_20

References

BID-105117
CVE-2018-1517
https://attackerkb.com/topics/CVE-2018-1517
REDHAT-RHSA-2018:2568
REDHAT-RHSA-2018:2569
REDHAT-RHSA-2018:2575
REDHAT-RHSA-2018:2576
REDHAT-RHSA-2018:2712
REDHAT-RHSA-2018:2713
XF-141681

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today