4.3

CVE-2015-0118

EPSS 0.21%
Published 28.06.2015 22:59:03
Last modified 12.04.2025 10:46:40
Source psirt@us.ibm.com
Teams watchlist Login
Open Login

IBM WebSphere Message Broker Toolkit 7 before 7007 IF2 and 8 before 8005 IF1 and Integration Toolkit 9 before 9003 IF1 are distributed with MQ client JAR files that support only weak TLS ciphers, which might make it easier for remote attackers to obtain sensitive information by sniffing the network during a connection to an Integration Bus node.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Websphere Message Broker Version7.0.

Ibm ≫ Websphere Message Broker Version7.0.0.1

Ibm ≫ Websphere Message Broker Version7.0.0.2

Ibm ≫ Websphere Message Broker Version7.0.0.3

Ibm ≫ Websphere Message Broker Version7.0.0.4

Ibm ≫ Websphere Message Broker Version7.0.0.5

Ibm ≫ Websphere Message Broker Version8.0

Ibm ≫ Websphere Message Broker Version8.0.0.1

Ibm ≫ Websphere Message Broker Version8.0.0.2

Ibm ≫ Websphere Message Broker Version8.0.0.3

Ibm ≫ Websphere Message Broker Version8.0.0.4

Ibm ≫ Websphere Message Broker Version8.0.0.5

Ibm ≫ Integration Bus Version9.0

Ibm ≫ Integration Bus Version9.0.0.1

Ibm ≫ Integration Bus Version9.0.0.2

Ibm ≫ Integration Bus Version9.0.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.21%	0.4

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

http://www-01.ibm.com/support/docview.wss?uid=swg1IT05725

http://www-01.ibm.com/support/docview.wss?uid=swg21957998

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-0118

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-0118

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-0118

EUVD