4.3

CVE-2015-0118

EPSS 0.21%
Veröffentlicht 28.06.2015 22:59:03
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

IBM WebSphere Message Broker Toolkit 7 before 7007 IF2 and 8 before 8005 IF1 and Integration Toolkit 9 before 9003 IF1 are distributed with MQ client JAR files that support only weak TLS ciphers, which might make it easier for remote attackers to obtain sensitive information by sniffing the network during a connection to an Integration Bus node.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Websphere Message Broker Version7.0.

Ibm ≫ Websphere Message Broker Version7.0.0.1

Ibm ≫ Websphere Message Broker Version7.0.0.2

Ibm ≫ Websphere Message Broker Version7.0.0.3

Ibm ≫ Websphere Message Broker Version7.0.0.4

Ibm ≫ Websphere Message Broker Version7.0.0.5

Ibm ≫ Websphere Message Broker Version8.0

Ibm ≫ Websphere Message Broker Version8.0.0.1

Ibm ≫ Websphere Message Broker Version8.0.0.2

Ibm ≫ Websphere Message Broker Version8.0.0.3

Ibm ≫ Websphere Message Broker Version8.0.0.4

Ibm ≫ Websphere Message Broker Version8.0.0.5

Ibm ≫ Integration Bus Version9.0

Ibm ≫ Integration Bus Version9.0.0.1

Ibm ≫ Integration Bus Version9.0.0.2

Ibm ≫ Integration Bus Version9.0.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.21%	0.4

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

http://www-01.ibm.com/support/docview.wss?uid=swg1IT05725

http://www-01.ibm.com/support/docview.wss?uid=swg21957998

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-0118

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-0118

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-0118

EUVD