exploitDog

GHSA-8rc2-9p2q-h44f

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.2

Описание

IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 do not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas.

IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 do not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas.

Ссылки

EPSS

Процентиль: 49%

0.00255

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-6105

CVSS3: 8.2

nvd

около 9 лет назад

IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 do not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas.

EPSS

Процентиль: 49%

0.00255

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-284