Weak TLS Cipher Vulnerability in IBM WebSphere Message Broker Toolkit
CVE-2015-0118

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Message Broker
Vendor: CVE Published:; 28 June 2015

Summary

The IBM WebSphere Message Broker Toolkit and Integration Toolkit are impacted by a vulnerability that utilizes weak TLS ciphers in their MQ client JAR files. This potentially allows remote attackers to intercept sensitive information transmitted during a connection to an Integration Bus node. It is crucial for users of the affected versions to upgrade and secure their environments to mitigate the risk of data exposure.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21957998

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1IT05725

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Jun 28, 2015
Vulnerability Reserved
Nov 18, 2014