CVE-2013-5468

Currently unrated

Key Information:

Vendor: IBM
Status: Algo One
Vendor: CVE Published:; 5 March 2014

Summary

IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, does not encrypt login requests, which allows remote attackers to obtain sensitive information by sniffing the network.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21666110

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/88382

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 5, 2014
Vulnerability Reserved
Aug 22, 2013