CVE-2018-1890

Summary

IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 152081.

Affected Software

VendorProductVersion RangeStatus
IBMWebSphere Application Server Patterns1.0.0.0affected
IBMWebSphere Application Server Patterns1.0.0.7affected
IBMWebSphere Application Server Patterns2.2.0.0affected
IBMWebSphere Application Server Patterns2.2.5.3affected
IBMWebSphere Application Server7.0affected
IBMWebSphere Application Server8.0affected
IBMWebSphere Application Server8.5affected
IBMWebSphere Application Server9.0affected
IBMWebSphere Application ServerLibertyaffected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References