CVE-2024-27255

Sažetak

IBM MQ Operator 2.0.0 LTS, 2.0.18 LTS, 3.0.0 CD, 3.0.1 CD, 2.4.0 through 2.4.7, 2.3.0 through 2.3.3, 2.2.0 through 2.2.2, and 2.3.0 through 2.3.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 283905.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/283905
https://www.ibm.com/support/pages/node/7126571
https://exchange.xforce.ibmcloud.com/vulnerabilities/283905
https://www.ibm.com/support/pages/node/7126571

CVSS

Base:	5.9
Impact:	3.6
Exploitability:	2.2

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Zadnje važnije ažuriranje

23-12-2024 - 17:32

Objavljeno

03-03-2024 - 12:15