Low Severity

IBM Security Bulletin: Financial Transaction Manager for Digital Payments: Information Leakage in configuration listing (CVE-2018-1670)

Share this post:

IBM Financial Transaction Manager for Digital Payments (FTM DP) for Multi-Platform could allow an authenticated user to obtain sensitive product configuration information from log files.

CVE(s): CVE-2018-1670

Affected product(s) and affected version(s):

FTM DP v3.2.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10731497
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144946

More stories

IBM Security Bulletin: Vulnerability affects Watson Explorer Foundational Components (CVE-2018-0732, CVE-2018-0734, CVE-2018-0737)

Sep 19, 2019 9:00 am EDT | Low Severity

Security vulnerabilities affect IBM Watson Explorer Foundational Components. CVE(s): CVE-2018-0732, CVE-2018-0734, CVE-2018-0737 Affected product(s) and affected version(s): The vulnerabilities apply to the following products and versions: Affected Product Affected Versions Applicable Vulnerabilities IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.2, 12.0.2.1 CVE-2018-0734 CVE-2018-0737 IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.0, 12.0.1 CVE-2018-0732 ...read more


IBM Security Bulletin: Vulnerability affects Watson Explorer Foundational Components (CVE-2018-0732, CVE-2018-0734, CVE-2018-0737)

Sep 18, 2019 9:01 am EDT | Low Severity

Security vulnerabilities affect IBM Watson Explorer Foundational Components. CVE(s): CVE-2018-0732, CVE-2018-0734, CVE-2018-0737 Affected product(s) and affected version(s): The vulnerabilities apply to the following products and versions: Affected Product Affected Versions Applicable Vulnerabilities IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.2, 12.0.2.1 CVE-2018-0734 CVE-2018-0737 IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.0, 12.0.1 CVE-2018-0732 ...read more


IBM Security Bulletin: HTTP Parameter Pollution and XSS vulnerability in WebSphere Application Server Admin Console ND (CVE-2019-4271)

Sep 16, 2019 3:51 pm EDT | Low Severity

There is a Client-side HTTP parameter pollution vulnerability and a Cross-site scripting vulnerability in WebSphere Application Server Admin Console. CVE(s): CVE-2019-4271 Affected product(s) and affected version(s): This vulnerability affects the following: WebSphere Application Server Version 9.0 WebSphere Application Server Version 8.5 WebSphere Virtual Enterprise Version 7.0 Refer to the following reference URLs for remediation and ...read more