PT-2016-4112 · Ibm · Ibm Security Guardium
Chris Shepherd
+6
·
Published
2016-09-26
·
Updated
2016-11-28
·
CVE-2016-0248
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security Guardium versions 9.0 before p700
IBM Security Guardium versions 10.0 before p100
Description
The issue allows man-in-the-middle attackers to obtain sensitive query-string information from SSL sessions via unspecified vectors.
Recommendations
For IBM Security Guardium version 9.0, update to p700 or later.
For IBM Security Guardium version 10.0, update to p100 or later.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Guardium