SSL Configuration Vulnerability in IBM Tivoli Application Dependency Discovery Manager
CVE-2012-5770

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Application Dependency Discovery Manager
Vendor: CVE Published:; 6 March 2013

What is CVE-2012-5770?

The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x prior to version 7.2.1.4 allows the use of the MD5 hash algorithm, which is susceptible to vulnerabilities. This weakness enables man-in-the-middle attackers to potentially spoof legitimate servers and decrypt network traffic through brute-force techniques, compromising the integrity and confidentiality of sensitive data. It is recommended to upgrade to a patched version to mitigate these risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/80354

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1IV32391

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21626029

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 6, 2013
Vulnerability Reserved
Nov 2, 2012