CVE-2022-33161
5.3MEDIUMIBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit th
Publicado: 10/14/2023Actualizado: 11/21/2024
Descripción
IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. X-Force ID: 228569.
Análisis IAImpulsado por IA
Productos Afectados
ibmsecurity_directory_integrator
7.2.0
ibmsecurity_directory_server
6.4.0.0
ibmsecurity_directory_suite
8.0.1
ibmsecurity_verify_directory
10.0.0
Referencias
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory