CVE-2013-3023

Name of the Vulnerable Software and Affected Versions IBM Tivoli Application Dependency Discovery Manager (TADDM) versions 7.1.2 and 7.2.0 through 7.2.1.4

Description The issue allows remote attackers to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used.

Recommendations For versions 7.1.2, consider restricting access to sensitive information to minimize the risk of exploitation. For versions 7.2.0 through 7.2.1.4, consider using a secure protocol instead of HTTP to protect the session. At the moment, there is no information about a newer version that contains a fix for this vulnerability.