There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by Enterprise Content Management System Monitor. These issues were disclosed as part of the IBM® SDK Java™ Technology Edition Quarterly CPU - Jan 2018 - Includes Oracle Jan 2018 CPU.
CVEID:CVE-2018-2603 **DESCRIPTION:*An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack vectors.
CVSS Base Score: 5.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/137855>for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
CVEID:CVE-2018-2618 **DESCRIPTION:*An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit JCE component could allow an unauthenticated attacker to obtain sensitive information resulting in a high confidentiality impact using unknown attack vectors.
CVSS Base Score: 5.9
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/137870>for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
Enterprise Content Management System Monitor v5.2
Enterprise Content Management System Monitor | 5.2.0.5.002 | Fix Central |
---|
N/A
CPE | Name | Operator | Version |
---|---|---|---|
enterprise content management system monitor | eq | 5.2 |