Medium severity5.3NVD Advisory· Published Oct 1, 2018· Updated Jun 17, 2026
CVE-2018-1420
CVE-2018-1420
Description
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 resets access control settings to the out of the box configuration during Combined Cumulative Fix (CF) installation. This can lead to security miss-configuration of the installation. IBM X-Force ID: 138950.
Affected products
27.0, 8.0, 8.5, 9.0+ 1 more
- (no CPE)range: 7.0, 8.0, 8.5, 9.0
- (no CPE)range: 7.0
Patches
Vulnerability mechanics
References
3- www.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securitytracker.com/id/1041767nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/138950nvdVDB EntryVendor Advisory
News mentions
0No linked articles in our index yet.