Improper Handling of jct-nist-compliance Parameter in IBM Security Access Manager for Web
CVE-2014-3052

Currently unrated

Key Information:

Vendor

IBM
Status
Security Access Manager For Web 8.0 Firmware
Security Access Manager For Web Appliance
Vendor
CVE Published:
21 June 2014

What is CVE-2014-3052?

The reverse-proxy feature in IBM Security Access Manager (ISAM) for Web 8.0, specifically in firmware versions 8.0.0.2 and 8.0.0.3, misinterprets the jct-nist-compliance parameter. This flaw could allow remote attackers to exploit weak SSL encryption configurations that do not comply with NIST SP 800-131A guidelines, leading to potential exposure of sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www-01.ibm.com/support/docview.wss?uid=swg21676705
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg1IV61553
vendor-advisoryx_refsource_AIXAPAR
https://exchange.xforce.ibmcloud.com/vulnerabilities/93454
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.