2.1

CVE-2015-2019

IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not prevent caching of documents retrieved in SSL sessions, which allows physically proximate attackers to obtain sensitive information by leveraging an unattended workstation.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmTivoli Directory Server Version6.0
IbmTivoli Directory Server Version6.1.0
IbmTivoli Directory Server Version6.2.0.0
IbmTivoli Directory Server Version6.3.0.0
IbmTivoli Directory Server Version6.3.1.0
IbmTivoli Directory Server Version6.4.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.09% 0.255
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
http://www.securitytracker.com/id/1032734
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/75437
Third Party Advisory
VDB Entry