4.3

CVE-2016-0266

IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle attackers to obtain sensitive information via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmVios Version2.2.0.10
IbmVios Version2.2.0.11
IbmVios Version2.2.0.12
IbmVios Version2.2.0.13
IbmVios Version2.2.1.0
IbmVios Version2.2.1.1
IbmVios Version2.2.1.3
IbmVios Version2.2.1.4
IbmVios Version2.2.1.5
IbmVios Version2.2.1.6
IbmVios Version2.2.1.7
IbmVios Version2.2.1.8
IbmVios Version2.2.1.9
IbmVios Version2.2.2.0
IbmVios Version2.2.2.1
IbmVios Version2.2.2.2
IbmVios Version2.2.2.3
IbmVios Version2.2.2.4
IbmVios Version2.2.2.5
IbmVios Version2.2.3.0
IbmVios Version2.2.3.1
IbmVios Version2.2.3.2
IbmVios Version2.2.3.3
IbmVios Version2.2.3.4
IbmVios Version2.2.3.50
IbmVios Version2.2.3.51
IbmVios Version2.2.3.52
IbmVios Version2.2.3.60
IbmVios Version2.2.3.70
IbmVios Version2.2.4.0
IbmVios Version2.2.4.10
IbmVios Version2.2.4.21
IbmVios Version2.2.4.22
IbmAix Version5.3
IbmAix Version6.1
IbmAix Version7.1
IbmAix Version7.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.44% 0.697
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.7 2.2 1.4
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.securitytracker.com/id/1036467
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86116
Broken Link
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86117
Broken Link
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86118
Broken Link
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86119
Broken Link
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86120
Broken Link
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86132
Broken Link
http://www.securityfocus.com/bid/92150
https://aix.software.ibm.com/aix/efixes/security/nettcp_advisory2.asc
Vendor Advisory
Mitigation