CVE-2022-33161
5.3MEDIUMIBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit th
Published: 10/14/2023Updated: 11/21/2024
Description
IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. X-Force ID: 228569.
AI AnalysisPowered by AI
Affected Products
ibmsecurity_directory_integrator
7.2.0
ibmsecurity_directory_server
6.4.0.0
ibmsecurity_directory_suite
8.0.1
ibmsecurity_verify_directory
10.0.0
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory