Weak SSL Cipher Vulnerability in IBM Security Access Manager Products
CVE-2014-6084

Currently unrated

Key Information:

Vendor: IBM
Status: Security Access Manager For Mobile
Vendor: CVE Published:; 18 December 2014

Summary

Certain versions of IBM Security Access Manager for Mobile and Web contain a vulnerability that allows remote attackers to capture sensitive information through network sniffing. This issue arises due to the usage of weak SSL ciphers, making encrypted communications potentially vulnerable to interception. Users are advised to upgrade to secure versions to mitigate this risk and safeguard their data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21684475

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1IV67358

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg1IV67581

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Dec 18, 2014
Vulnerability Reserved
Sep 2, 2014