CVE-2018-1996

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS…

ibm·CWE-327·Published 2019-02-19

CVSS

—

EPSS

0.01

KEV

Exploits

cve.orgen

285 chars

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 154650.

NVDen

285 chars

NVDes

308 chars

IBM WebSphere Application Server 7.0, 8.0, 8.5 y 9.0 podría proporcionar seguridad más débil de la esperada debido a una configuración TLS incorrecta. Un atacante remoto podría explotar esta vulnerabilidad para obtener información sensible empleando técnicas Man-in-the-Middle (MitM). IBM X-Force ID: 154650.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	3.5	6.8	2.9	AV:N/AC:M/Au:S/C:P/I:N/A:N
3.0	Primary	cve.org	5.3	—	—	CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:L/S:U/UI:N/E:U/RC:C/RL:O