CVE-2017-1787 MEDIUM

CVE-2017-1787

Vendor Ibm
Product Rational Publishing Engine
Published March 2, 2018
Last update September 17, 2024

CVSS base score

4.4/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.0/A:N/AC:L/AV:L/C:H/I:N/PR:H/S:U/UI:N

What the vulnerability does

01Description

IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials. IBM X-Force ID: 137022.

Key dates

02Disclosure timeline

March 2, 2018 CVE published
September 17, 2024 Record updated