Data Encryption Vulnerability in IBM WebSphere eXtreme Scale
CVE-2016-2861

3.7LOW

Key Information:

Vendor
IBM
Status
Websphere Extreme Scale
Vendor
CVE Published:
2 July 2016

Summary

IBM WebSphere eXtreme Scale versions prior to specified updates do not implement adequate data encryption measures, allowing remote attackers to intercept and access sensitive information over unsecured networks. This vulnerability highlights the importance of robust encryption practices to safeguard data in transit, thereby preventing unauthorized access to confidential data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PI60897
vendor-advisoryx_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21983036
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg1PI60898
vendor-advisoryx_refsource_AIXAPAR

CVSS V3.1

Score:
3.7
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.