Security Bulletin: Multi-Cloud Data Encryption (MDE) has addressed a missing checksum vulnerability
CVEID: CVE-2018-1593**
DESCRIPTION:** IBM Multi-Cloud Data Encryption (MDE) could allow an unauthorized user to manipulate data due to missing file checksums.
CVSS Base Score: 3.7
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/143568 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)
Affected Multi-Cloud Data Encryption (MDE)
|
Affected Versions
—|—
Multi-Cloud Data Encryption (MDE)| 2.1-2.1.0.1
Product
|
VRMF
|
APAR
|
Remediation / First Fix
—|—|—|—
Multi-Cloud Data Encryption (MDE)| 2.1.0.2| N/A| IBM Multi-Cloud Data Encryption V2.1.0.2 Multiplatform English (CNS30EN ) via Passport Advantage: <https://www-01.ibm.com/software/passportadvantage/pao_customer.html>