CVE-2017-1758: CVE-2017-1758

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-1758

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 135859.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多款IBM产品安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM Transformation Extender Advanced等都是美国IBM公司的产品。IBM Transformation Extender Advanced是一套能够支持自动化各种格式数据之间的转换和验证的应用程序。Financial Transaction Manager for ACH是一款金融事务管理器产品，它主要用于监控、跟踪和报告金融支付和交易。多款IBM产品中存在XML外部实体注入漏洞。远程攻击者可利用该漏洞泄露敏感信息或消耗内存资源。以下产品和版本受到影响：IBM Tran

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
IBM	Control Center	6.0	-
IBM	Financial Transaction Manager	3.0.2	-
IBM	Transformation Extender Advanced	9.0	-

II. Public POCs for CVE-2017-1758

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-1758

Please Login to view more intelligence information

🔗 http://www.ibm.com/support/docview.wss?uid=swg22013375x_refsource_CONFIRM
🔗 http://www.ibm.com/support/docview.wss?uid=swg22013432x_refsource_CONFIRM
🔗 http://www.ibm.com/support/docview.wss?uid=swg22012828x_refsource_CONFIRM
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/135859x_refsource_MISC
🔗 http://www.securityfocus.com/bid/103130vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2017-1758

IV. Related Vulnerabilities

Same product: Control Center

Same vendor: IBM

V. Comments for CVE-2017-1758

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2017-1758

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-1758

III. Intelligence Information for CVE-2017-1758

IV. Related Vulnerabilities

V. Comments for CVE-2017-1758

Leave a comment