High severity7.1NVD Advisory· Published Sep 28, 2018· Updated Jun 17, 2026
CVE-2018-1702
CVE-2018-1702
Description
IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 146189.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4= 7.1.2, 7.2.0.2+ 1 more
- (no CPE)range: = 7.1.2, 7.2.0.2
- (no CPE)range: 7.2.0.2
= 7.1 Fix Pack 1, 7.1.1+ 1 more
- (no CPE)range: = 7.1 Fix Pack 1, 7.1.1
- (no CPE)range: 7.1.1
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/146189nvdVDB EntryVendor Advisory
- www.ibm.com/support/docview.wssnvdVendor Advisory
News mentions
0No linked articles in our index yet.