CVE-2018-1665

IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through 7.5.2.17, 7.5.1.0 through 7.5.1.17, 7.5.0.0 through 7.5.0.18, and 7.7.0.0 through 7.7.1.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 144891.

Published : 2018-12-13 16:29 Updated : 2019-10-09 23:38

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Ibm Datapower Gateway 7.7.0.0 cpe:/a:ibm:datapower_gateway:7.7.0.0::~~continuous_delivery~~~
Ibm Datapower Gateway 7.7.1.0 cpe:/a:ibm:datapower_gateway:7.7.1.0::~~continuous_delivery~~~
Ibm Datapower Gateway 7.7.1.1 cpe:/a:ibm:datapower_gateway:7.7.1.1::~~continuous_delivery~~~
Ibm Datapower Gateway 7.7.1.2 cpe:/a:ibm:datapower_gateway:7.7.1.2::~~continuous_delivery~~~
Ibm Datapower Gateway 7.7.1.3 cpe:/a:ibm:datapower_gateway:7.7.1.3::~~continuous_delivery~~~
Ibm Datapower Gateway 7.5.0.0 cpe:/a:ibm:datapower_gateway:7.5.0.0
Ibm Datapower Gateway 7.5.0.1 cpe:/a:ibm:datapower_gateway:7.5.0.1
Ibm Datapower Gateway 7.5.0.2 cpe:/a:ibm:datapower_gateway:7.5.0.2
Ibm Datapower Gateway 7.5.0.3 cpe:/a:ibm:datapower_gateway:7.5.0.3
Ibm Datapower Gateway 7.5.0.4 cpe:/a:ibm:datapower_gateway:7.5.0.4
Ibm Datapower Gateway 7.5.0.5 cpe:/a:ibm:datapower_gateway:7.5.0.5
Ibm Datapower Gateway 7.5.0.6 cpe:/a:ibm:datapower_gateway:7.5.0.6
Ibm Datapower Gateway 7.5.0.7 cpe:/a:ibm:datapower_gateway:7.5.0.7
Ibm Datapower Gateway 7.5.0.8 cpe:/a:ibm:datapower_gateway:7.5.0.8
Ibm Datapower Gateway 7.5.0.9 cpe:/a:ibm:datapower_gateway:7.5.0.9
Ibm Datapower Gateway 7.5.0.10 cpe:/a:ibm:datapower_gateway:7.5.0.10
Ibm Datapower Gateway 7.5.0.11 cpe:/a:ibm:datapower_gateway:7.5.0.11
Ibm Datapower Gateway 7.5.0.12 cpe:/a:ibm:datapower_gateway:7.5.0.12
Ibm Datapower Gateway 7.5.0.13 cpe:/a:ibm:datapower_gateway:7.5.0.13
Ibm Datapower Gateway 7.5.0.14 cpe:/a:ibm:datapower_gateway:7.5.0.14
Ibm Datapower Gateway 7.5.0.15 cpe:/a:ibm:datapower_gateway:7.5.0.15
Ibm Datapower Gateway 7.5.0.16 cpe:/a:ibm:datapower_gateway:7.5.0.16
Ibm Datapower Gateway 7.5.0.17 cpe:/a:ibm:datapower_gateway:7.5.0.17
Ibm Datapower Gateway 7.5.0.18 cpe:/a:ibm:datapower_gateway:7.5.0.18
Ibm Datapower Gateway 7.5.1.0 cpe:/a:ibm:datapower_gateway:7.5.1.0
Ibm Datapower Gateway 7.5.1.1 cpe:/a:ibm:datapower_gateway:7.5.1.1
Ibm Datapower Gateway 7.5.1.2 cpe:/a:ibm:datapower_gateway:7.5.1.2
Ibm Datapower Gateway 7.5.1.3 cpe:/a:ibm:datapower_gateway:7.5.1.3
Ibm Datapower Gateway 7.5.1.4 cpe:/a:ibm:datapower_gateway:7.5.1.4
Ibm Datapower Gateway 7.5.1.5 cpe:/a:ibm:datapower_gateway:7.5.1.5
Ibm Datapower Gateway 7.5.1.6 cpe:/a:ibm:datapower_gateway:7.5.1.6
Ibm Datapower Gateway 7.5.1.7 cpe:/a:ibm:datapower_gateway:7.5.1.7
Ibm Datapower Gateway 7.5.1.8 cpe:/a:ibm:datapower_gateway:7.5.1.8
Ibm Datapower Gateway 7.5.1.9 cpe:/a:ibm:datapower_gateway:7.5.1.9
Ibm Datapower Gateway 7.5.1.10 cpe:/a:ibm:datapower_gateway:7.5.1.10
Ibm Datapower Gateway 7.5.1.11 cpe:/a:ibm:datapower_gateway:7.5.1.11
Ibm Datapower Gateway 7.5.1.12 cpe:/a:ibm:datapower_gateway:7.5.1.12
Ibm Datapower Gateway 7.5.1.13 cpe:/a:ibm:datapower_gateway:7.5.1.13
Ibm Datapower Gateway 7.5.1.14 cpe:/a:ibm:datapower_gateway:7.5.1.14
Ibm Datapower Gateway 7.5.1.15 cpe:/a:ibm:datapower_gateway:7.5.1.15
Ibm Datapower Gateway 7.5.1.16 cpe:/a:ibm:datapower_gateway:7.5.1.16
Ibm Datapower Gateway 7.5.1.17 cpe:/a:ibm:datapower_gateway:7.5.1.17
Ibm Datapower Gateway 7.5.2.0 cpe:/a:ibm:datapower_gateway:7.5.2.0
Ibm Datapower Gateway 7.5.2.1 cpe:/a:ibm:datapower_gateway:7.5.2.1
Ibm Datapower Gateway 7.5.2.2 cpe:/a:ibm:datapower_gateway:7.5.2.2
Ibm Datapower Gateway 7.5.2.3 cpe:/a:ibm:datapower_gateway:7.5.2.3
Ibm Datapower Gateway 7.5.2.4 cpe:/a:ibm:datapower_gateway:7.5.2.4
Ibm Datapower Gateway 7.5.2.5 cpe:/a:ibm:datapower_gateway:7.5.2.5
Ibm Datapower Gateway 7.5.2.6 cpe:/a:ibm:datapower_gateway:7.5.2.6
Ibm Datapower Gateway 7.5.2.7 cpe:/a:ibm:datapower_gateway:7.5.2.7
Ibm Datapower Gateway 7.5.2.8 cpe:/a:ibm:datapower_gateway:7.5.2.8
Ibm Datapower Gateway 7.5.2.9 cpe:/a:ibm:datapower_gateway:7.5.2.9
Ibm Datapower Gateway 7.5.2.10 cpe:/a:ibm:datapower_gateway:7.5.2.10
Ibm Datapower Gateway 7.5.2.11 cpe:/a:ibm:datapower_gateway:7.5.2.11
Ibm Datapower Gateway 7.5.2.12 cpe:/a:ibm:datapower_gateway:7.5.2.12
Ibm Datapower Gateway 7.5.2.13 cpe:/a:ibm:datapower_gateway:7.5.2.13
Ibm Datapower Gateway 7.5.2.14 cpe:/a:ibm:datapower_gateway:7.5.2.14
Ibm Datapower Gateway 7.5.2.15 cpe:/a:ibm:datapower_gateway:7.5.2.15
Ibm Datapower Gateway 7.5.2.16 cpe:/a:ibm:datapower_gateway:7.5.2.16
Ibm Datapower Gateway 7.5.2.17 cpe:/a:ibm:datapower_gateway:7.5.2.17
Ibm Datapower Gateway 7.6.0.0 cpe:/a:ibm:datapower_gateway:7.6.0.0
Ibm Datapower Gateway 7.6.0.1 cpe:/a:ibm:datapower_gateway:7.6.0.1
Ibm Datapower Gateway 7.6.0.2 cpe:/a:ibm:datapower_gateway:7.6.0.2
Ibm Datapower Gateway 7.6.0.3 cpe:/a:ibm:datapower_gateway:7.6.0.3
Ibm Datapower Gateway 7.6.0.4 cpe:/a:ibm:datapower_gateway:7.6.0.4
Ibm Datapower Gateway 7.6.0.5 cpe:/a:ibm:datapower_gateway:7.6.0.5
Ibm Datapower Gateway 7.6.0.6 cpe:/a:ibm:datapower_gateway:7.6.0.6
Ibm Datapower Gateway 7.6.0.7 cpe:/a:ibm:datapower_gateway:7.6.0.7
Ibm Datapower Gateway 7.6.0.8 cpe:/a:ibm:datapower_gateway:7.6.0.8
Ibm Datapower Gateway 7.6.0.9 cpe:/a:ibm:datapower_gateway:7.6.0.9
Ibm Datapower Gateway 7.6.0.10 cpe:/a:ibm:datapower_gateway:7.6.0.10
Ibm Datapower Gateway 7.7.0.0 cpe:/a:ibm:datapower_gateway:7.7.0.0
Ibm Datapower Gateway 7.7.0.1 cpe:/a:ibm:datapower_gateway:7.7.0.1
Ibm Datapower Gateway 7.7.0.2 cpe:/a:ibm:datapower_gateway:7.7.0.2
Ibm Datapower Gateway 7.7.1.0 cpe:/a:ibm:datapower_gateway:7.7.1.0
Ibm Datapower Gateway 7.7.1.1 cpe:/a:ibm:datapower_gateway:7.7.1.1
Ibm Datapower Gateway 7.7.1.2 cpe:/a:ibm:datapower_gateway:7.7.1.2
Ibm Datapower Gateway 7.7.1.3 cpe:/a:ibm:datapower_gateway:7.7.1.3
  1. Ibm (1) Search CVE
    1. Datapower Gateway (73) Search CVE
      1. 7.7.0.0
      2. 7.7.1.0
      3. 7.7.1.1
      4. 7.7.1.2
      5. 7.7.1.3
      6. 7.5.0.0
      7. 7.5.0.1
      8. 7.5.0.2
      9. 7.5.0.3
      10. 7.5.0.4
      11. 7.5.0.5
      12. 7.5.0.6
      13. 7.5.0.7
      14. 7.5.0.8
      15. 7.5.0.9
      16. 7.5.0.10
      17. 7.5.0.11
      18. 7.5.0.12
      19. 7.5.0.13
      20. 7.5.0.14
      21. 7.5.0.15
      22. 7.5.0.16
      23. 7.5.0.17
      24. 7.5.0.18
      25. 7.5.1.0
      26. 7.5.1.1
      27. 7.5.1.2
      28. 7.5.1.3
      29. 7.5.1.4
      30. 7.5.1.5
      31. 7.5.1.6
      32. 7.5.1.7
      33. 7.5.1.8
      34. 7.5.1.9
      35. 7.5.1.10
      36. 7.5.1.11
      37. 7.5.1.12
      38. 7.5.1.13
      39. 7.5.1.14
      40. 7.5.1.15
      41. 7.5.1.16
      42. 7.5.1.17
      43. 7.5.2.0
      44. 7.5.2.1
      45. 7.5.2.2
      46. 7.5.2.3
      47. 7.5.2.4
      48. 7.5.2.5
      49. 7.5.2.6
      50. 7.5.2.7
      51. 7.5.2.8
      52. 7.5.2.9
      53. 7.5.2.10
      54. 7.5.2.11
      55. 7.5.2.12
      56. 7.5.2.13
      57. 7.5.2.14
      58. 7.5.2.15
      59. 7.5.2.16
      60. 7.5.2.17
      61. 7.6.0.0
      62. 7.6.0.1
      63. 7.6.0.2
      64. 7.6.0.3
      65. 7.6.0.4
      66. 7.6.0.5
      67. 7.6.0.6
      68. 7.6.0.7
      69. 7.6.0.8
      70. 7.6.0.9
      71. 7.6.0.10
      72. 7.7.0.1
      73. 7.7.0.2

CWE

ID Name Description Links
CWE-326 Inadequate Encryption Strength The software stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required. CVE

History of changes

Date Event
2019-10-09 23:38
2019-01-08 15:23
2018-12-13 16:29

New CVE