IBM Watson IoT Message Gateway 2.0.0.x, 5.0.0.0, 5.0.0.1, and 5.0.0.2 is vulnerable to a buffer overflow, caused by improper bounds checking when handling a failed HTTP request with specific content in the headers. By sending a specially crafted HTTP request, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause a denial of service. IBM X-Force ID: 174972.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm iot_messagesight |
||
ibm iot_messagesight 5.0.0.0 |
||
ibm watson_iot_platform_-_message_gateway 5.0.0.1 |