Lucene search
IbmCVE-2012-5770HistoryMar 06, 2013 - 1:10 p.m.
CVE-2012-5770
2013-03-0613:10:25
CWE-16
ibm
web.nvd.nist.gov
24
ibm
tivoli
application
discovery manager
ssl
configuration
vulnerability
nvd
cve-2012-5770
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
6.3
Confidence
Low
EPSS
0.001
Percentile
41.3%
The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 supports the MD5 hash algorithm, which makes it easier for man-in-the-middle attackers to spoof servers and decrypt network traffic via a brute-force attack.
Affected configurations
Node
ibmtivoli_application_dependency_discovery_managerMatch7.2.0.0
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.0 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.0:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.1 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.1:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.1.3 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.1.3:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2012-5770
2013-03-06 13:10:25
ibm
ibm
Security Bulletin: TADDM uses weak SSL certificates (CVE-2012-5770)
2022-09-25 20:45:36
cvelist
cvelist
CVE-2012-5770
2013-03-06 11:00:00
prion
prion
Design/Logic Flaw
2013-03-06 13:10:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
6.3
Confidence
Low
EPSS
0.001
Percentile
41.3%
Related for CVE-2012-5770