Authentication Bypass Vulnerability in IBM Datacap Fastdoc Capture
CVE-2018-1773

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Datacap
Vendor: CVE Published:; 12 September 2018

🔔 Create IBM Vulnerability Alert

What is CVE-2018-1773?

An authentication bypass vulnerability exists in IBM Datacap Fastdoc Capture 9.1.1, 9.1.3, and 9.1.4, allowing an authenticated user to bypass future authentication mechanisms. This occurs as a result of improper validation, which could lead to unauthorized access after the initial login. For additional details, refer to IBM's security documentation and X-Force ID 148691.

Affected Version(s)

Datacap 9.1.1

Datacap 9.1.3

Datacap 9.1.4

References

http://www.securityfocus.com/bid/105340

vdb-entryx_refsource_BID

https://www.ibm.com/support/docview.wss?uid=ibm10729013

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/148691

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 12, 2018
Vulnerability Reserved
Dec 13, 2017

.

CVE-2018-1773 : Authentication Bypass Vulnerability in IBM Datacap Fastdoc Capture