How severe is CVE-2022-33161?

CVE-2022-33161 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2022-33161

5.3MEDIUM

IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit th

Опубликовано: 10/14/2023Обновлено: 11/21/2024

Описание

IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. X-Force ID: 228569.

ИИ-АнализНа базе ИИ

Затронутые продукты

ibmsecurity_directory_integrator

7.2.0

ibmsecurity_directory_server

6.4.0.0

ibmsecurity_directory_suite

8.0.1

ibmsecurity_verify_directory

10.0.0

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/228569
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/7047116
PatchVendor Advisory
https://www.ibm.com/support/pages/node/7047428
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/228569
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/7047116
PatchVendor Advisory
https://www.ibm.com/support/pages/node/7047428
PatchVendor Advisory