CVE-2014-0897

EPSS 0.09%
Published 29.08.2014 09:55:07
Last modified 12.04.2025 10:46:40
Source psirt@us.ibm.com
Teams watchlist Login
Open Login

The Configuration Patterns component in IBM Flex System Manager (FSM) 1.2.0.x, 1.2.1.x, 1.3.0.x, and 1.3.1.x uses a weak algorithm in an encryption step during Chassis Management Module (CMM) account creation, which makes it easier for remote authenticated users to defeat cryptographic protection mechanisms via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Flex System Manager Version1.2.0

Ibm ≫ Flex System Manager Version1.2.1

Ibm ≫ Flex System Manager Version1.3.0

Ibm ≫ Flex System Manager Version1.3.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.236

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	3.5	6.8	2.9	AV:N/AC:M/Au:S/C:N/I:P/A:N

http://www-01.ibm.com/support/docview.wss?uid=swg1IT03824

http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096153

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/91395

https://nvd.nist.gov/vuln/detail/CVE-2014-0897

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-0897

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-0897

EUVD