{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T01:41:34.345","vulnerabilities":[{"cve":{"id":"CVE-2018-1666","sourceIdentifier":"psirt@us.ibm.com","published":"2019-02-07T15:29:00.243","lastModified":"2024-11-21T04:00:10.127","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM DataPower Gateway 2018.4.1.0, 7.6.0.0 through 7.6.0.11, 7.5.2.0 through 7.5.2.18, 7.5.1.0 through 7.5.1.18, 7.5.0.0 through 7.5.0.19, and 7.7.0.0 through 7.7.1.3 could allow an authenticated user to inject arbitrary messages that would be displayed on the UI. IBM X-Force ID: 144892."},{"lang":"es","value":"IBM DataPower Gateway, en su versión 2018.4.1.0, desde la versión 7.6.0.0 hasta la 7.6.0.11, desde la 7.5.2.0 hasta la 7.5.2.18, desde la 7.5.1.0 hasta la 7.5.1.18, desde la 7.5.0.0 hasta la 7.5.0.19 y desde la 7.7.0.0 hasta la 7.7.1.3, podría permitir que un usuario autenticado inyecte mensajes arbitrarios que se mostrarían en la interfaz de usuario. IBM X-Force ID: 144892."}],"metrics":{"cvssMetricV30":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:P/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"7.5.0.0","versionEndIncluding":"7.5.0.19","matchCriteriaId":"90E823BF-C8B4-4023-8A83-84D20D9F18DC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"7.5.1.0","versionEndIncluding":"7.5.1.18","matchCriteriaId":"04B09CFE-727B-43DB-9E1F-B4877E436627"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"7.5.2.0","versionEndIncluding":"7.5.2.18","matchCriteriaId":"3F810D1A-A13F-4C3C-AE07-BC3FE7E64998"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"7.6.0.0","versionEndIncluding":"7.6.0.11","matchCriteriaId":"2974F914-703E-4636-9474-F65F337B9CC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"7.7.0.0","versionEndIncluding":"7.7.1.3","matchCriteriaId":"1B47A760-81C4-40D3-B82A-B688962F7645"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:datapower_gateway:2018.4.1.0:*:*:*:*:*:*:*","matchCriteriaId":"50B0D05A-F0E8-48B5-89C1-A0223FBA47AB"}]}]}],"references":[{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/144892","source":"psirt@us.ibm.com","tags":["VDB Entry","Vendor Advisory"]},{"url":"https://www.ibm.com/support/docview.wss?uid=ibm10744205","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/144892","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry","Vendor Advisory"]},{"url":"https://www.ibm.com/support/docview.wss?uid=ibm10744205","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}