VYPR
Medium severity4.1NVD Advisory· Published Nov 21, 2018· Updated Jun 17, 2026

CVE-2018-1843

CVE-2018-1843

Description

The Identity and Access Management (IAM) services (IBM Cloud Private 3.1.0) do not use a secure channel, such as SSL, to exchange information only when accessed internally from within the cluster. It could be possible for an attacker with access to network traffic to sniff packets from the connection and uncover data. IBM X-Force ID: 150903

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Cloud Privatellm-fuzzy2 versions
    3.1.0+ 1 more
    • (no CPE)range: 3.1.0
    • (no CPE)range: 3.1.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.