CVE-2018-1666 is a vulnerability in IBM Datapower Gateway
Published on February 7, 2019
IBM DataPower Gateway 2018.4.1.0, 7.6.0.0 through 7.6.0.11, 7.5.2.0 through 7.5.2.18, 7.5.1.0 through 7.5.1.18, 7.5.0.0 through 7.5.0.19, and 7.7.0.0 through 7.7.1.3 could allow an authenticated user to inject arbitrary messages that would be displayed on the UI. IBM X-Force ID: 144892.
Products Associated with CVE-2018-1666
Want to know whenever a new CVE is published for IBM Datapower Gateway? stack.watch will email you.
Affected Versions
IBM DataPower Gateway:- Version 7.6.0.0 is affected.
- Version 7.5.2.0 is affected.
- Version 7.5.1.0 is affected.
- Version 7.5.0.0 is affected.
- Version 7.7.0.0 is affected.
- Version 7.7.1.3 is affected.
- Version 7.5.0.19 is affected.
- Version 7.5.1.18 is affected.
- Version 7.5.2.18 is affected.
- Version 7.6.0.11 is affected.
- Version 2018.4.1.0 is affected.
Exploit Probability
EPSS
0.17%
Percentile
37.64%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.