Описание
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.2 could provide weaker than expected security for outbound TLS connections caused by a failure to honor user configuration. IBM X-Force ID: 274711.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 17.0.0.3 (включая) до 24.0.0.3 (исключая)
cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:*
EPSS
Процентиль: 10%
0.00034
Низкий
5.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-327
CWE-327
Связанные уязвимости
CVSS3: 5.3
github
почти 2 года назад
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.2 could provide weaker than expected security for outbound TLS connections caused by a failure to honor user configuration. IBM X-Force ID: 274711.
EPSS
Процентиль: 10%
0.00034
Низкий
5.3 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-327
CWE-327