PT-2018-6299 · Ibm · Ibm Tivoli Key Lifecycle Manager

Publicado

2018-01-04

Atualizado

2018-01-12

CVE-2017-1664

CVSS v3.1

5.9

Média

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: IBM Tivoli Key Lifecycle Manager versions 2.5 through 2.7

Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information.

Recommendations: For versions 2.5 through 2.7, update to a version that uses stronger cryptographic algorithms to prevent decryption of sensitive information by an attacker.

Correção

Inadequate Encryption Strength

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-326

Identificadores relacionados

CVE-2017-1664

Produtos afetados

Ibm Tivoli Key Lifecycle Manager

PT-2018-6299 · Ibm · Ibm Tivoli Key Lifecycle Manager

CVE-2017-1664

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5