CVE-2014-0897

Sažetak

The Configuration Patterns component in IBM Flex System Manager (FSM) 1.2.0.x, 1.2.1.x, 1.3.0.x, and 1.3.1.x uses a weak algorithm in an encryption step during Chassis Management Module (CMM) account creation, which makes it easier for remote authenticated users to defeat cryptographic protection mechanisms via unspecified vectors.

Reference

http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096153
http://www-01.ibm.com/support/docview.wss?uid=swg1IT03824
https://exchange.xforce.ibmcloud.com/vulnerabilities/91395

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

29-08-2017 - 01:34

Objavljeno

29-08-2014 - 09:55