Main Vulnerability Database Vulnerabilities #VU16175

XXE attack in IBM WebSphere Application Server - CVE-2018-1905

Published: November 20, 2018 / Updated: November 29, 2018

Vulnerability identifier: #VU16175

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-1905

CWE-ID: CWE-611

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: IBM Corporation

Affected software:
IBM WebSphere Application Server

Detailed vulnerability description

The vulnerability allows a remote authenticated attacker to conduct XXE-attack.

The vulnerability exists due to improper handling of XML External Entities (XXEs) when parsing an XML file. A remote attacker can trick the victim into open an XML file that submits malicious input and obtain potentially sensitive information or consume excessive resources to cause the server to crash.

How to mitigate CVE-2018-1905

Update to version 9.0.0.10.

Sources

https://www-01.ibm.com/support/docview.wss?uid=ibm10738721

XXE attack in IBM WebSphere Application Server - CVE-2018-1905

Detailed vulnerability description

How to mitigate CVE-2018-1905

Sources

Please verify you're human