XXE attack in IBM Operational Decision Manager
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2018-1821 |
| CWE-ID | CWE-611 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software |
Operational Decision Manager Client/Desktop applications / Office applications |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) XXE attack
EUVDB-ID: #VU16725
Risk: Low
CVSSv4.0: 7.8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2018-1821
CWE-ID:
CWE-611 - Improper Restriction of XML External Entity Reference ('XXE')
Exploit availability: Yes
DescriptionThe vulnerability allows a remote authenticated attacker to conduct XXE-attack.
The vulnerability exists due to improper handling of XML External Entities (XXEs) when parsing an XML file. A remote attacker can submit a specially crafted input and obtain potentially sensitive information or cause the service to crash.
MitigationThe vulnerability has been fixed in the versions 8.6.0.3, 8.7.1.2, 8.8.1.3, 8.9.2.1.
Vulnerable software versionsOperational Decision Manager: 8.6 - 8.9
CPE2.3- cpe:2.3:a:ibm_corporation:operational_decision_manager:8.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:operational_decision_manager:8.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:operational_decision_manager:8.8:*:*:*:*:*:*:*
https://www-01.ibm.com/support/docview.wss?uid=ibm10744149
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website or open a file.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
