CVE-2014-0897

Currently unrated

Key Information:

Vendor: IBM
Status: Flex System Manager
Vendor: CVE Published:; 29 August 2014

Summary

The Configuration Patterns component in IBM Flex System Manager (FSM) 1.2.0.x, 1.2.1.x, 1.3.0.x, and 1.3.1.x uses a weak algorithm in an encryption step during Chassis Management Module (CMM) account creation, which makes it easier for remote authenticated users to defeat cryptographic protection mechanisms via unspecified vectors.

References

http://www.ibm.com/support/entry/portal/docdisplay?lndoci...

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1IT03824

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/91395

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Aug 29, 2014
Vulnerability Reserved
Jan 6, 2014