#VU16725 XXE attack in Operational Decision Manager - CVE-2018-1821

Cybersecurity Help s.r.o.

Published: 2018-12-27 | Updated: 2021-06-17

Vulnerability identifier: #VU16725

Vulnerability risk: Low

CVSSv4.0: 7.8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2018-1821

CWE-ID: CWE-611

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Operational Decision Manager
Client/Desktop applications / Office applications

Vendor: IBM Corporation

Description
The vulnerability allows a remote authenticated attacker to conduct XXE-attack.

The vulnerability exists due to improper handling of XML External Entities (XXEs) when parsing an XML file. A remote attacker can submit a specially crafted input and obtain potentially sensitive information or cause the service to crash.

Mitigation
The vulnerability has been fixed in the versions 8.6.0.3, 8.7.1.2, 8.8.1.3, 8.9.2.1.

Vulnerable software versions

Operational Decision Manager: 8.6 - 8.9

External links
https://www-01.ibm.com/support/docview.wss?uid=ibm10744149

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

XXE attack in IBM Operational Decision Manager