Multiple vulnerabilities in IBM WebSphere Application Server

Published: 2018-02-09

Risk	Low
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2017-1681 CVE-2017-1731
CWE-ID	CWE-200 CWE-264
Exploitation vector	Network
Public exploit	N/A
Vulnerable software Subscribe	IBM WebSphere Application Server Server applications / Application servers
Vendor	IBM Corporation

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Information disclosure

EUVDB-ID: #VU10431

Risk: Low

CVSSv3.1: 5.2 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-1681

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in the web interface of IBM WebSphere Application Server due to the improper handling of application requests. A local attacker can send a specially crafted request and obtain unauthorized access to read a file.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM WebSphere Application Server: 7.0.0.0 - 9.0.0.0

External links

http://www-01.ibm.com/support/docview.wss?uid=swg22010419

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Privilege escalation

EUVDB-ID: #VU10435

Risk: Low

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-1731

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls