CVE-2022-33161
5.3MEDIUMIBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit th
게시됨: 10/14/2023업데이트됨: 11/21/2024
설명
IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. X-Force ID: 228569.
AI 분석AI 기반
영향받는 제품
ibmsecurity_directory_integrator
7.2.0
ibmsecurity_directory_server
6.4.0.0
ibmsecurity_directory_suite
8.0.1
ibmsecurity_verify_directory
10.0.0
참조
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/228569VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7047116PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7047428PatchVendor Advisory