CVE-2018-1814: Weak Encryption
First published: Thu Dec 13 2018(Updated: )
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 150018.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Access Manager | >=9.0.1.0<=9.0.5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the IBM Security Access Manager Appliance vulnerability?
The vulnerability ID for the IBM Security Access Manager Appliance vulnerability is CVE-2018-1814.
What is the severity of CVE-2018-1814?
The severity of CVE-2018-1814 is high, with a severity value of 7.5.
What is the affected software?
The affected software is IBM Security Access Manager Appliance versions 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0.
What is the description of CVE-2018-1814?
CVE-2018-1814 is a vulnerability in IBM Security Access Manager Appliance versions 9.0.1.0 to 9.0.5.0 that uses weaker than expected cryptographic algorithms, allowing an attacker to decrypt highly sensitive information.
Is there any fix available for CVE-2018-1814?
Yes, IBM has released a fix for CVE-2018-1814. Please refer to the IBM support page for more information.
- collector/nvd-index
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/ibm
- canonical/ibm security access manager
- version/ibm security access manager/9.0.1.0
- version/ibm security access manager/9.0.5.0