CVE-2017-1773 Information

Description

IBM DataPower Gateways 7.1 72 7.5 and 7.6 could allow an attacker using man-in-the-middle techniques to spoof DNS responses to perform DNS cache poisoning and redirect Internet traffic. IBM X-Force ID: 136817.

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

Reference

http://www.ibm.com/support/docview.wss?uid=swg22012758 https://exchange.xforce.ibmcloud.com/vulnerabilities/136817

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

4.0