Lucene search
IbmCVE-2014-0848HistoryMar 26, 2014 - 10:55 a.m.
CVE-2014-0848
2014-03-2610:55:05
CWE-310
ibm
web.nvd.nist.gov
20
ibm
netezza
performance portal
apache http server
sslciphersuite
weak sslciphersuite
brute-force attack
cryptographic protection mechanisms
cve-2014-0848
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
35.1%
The (1) ssl.conf and (2) httpd.conf files in the Apache HTTP Server component in IBM Netezza Performance Portal 2.0 before 2.0.0.4 have weak SSLCipherSuite values, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
Affected configurations
Node
ibmnetezza_performance_portalMatch2.0.0.0
ORibmnetezza_performance_portalMatch2.0.0.1
ORibmnetezza_performance_portalMatch2.0.0.2
ORibmnetezza_performance_portalMatch2.0.0.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | netezza_performance_portal | 2.0.0.0 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.0:*:*:*:*:*:*:* |
| ibm | netezza_performance_portal | 2.0.0.1 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.1:*:*:*:*:*:*:* |
| ibm | netezza_performance_portal | 2.0.0.2 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.2:*:*:*:*:*:*:* |
| ibm | netezza_performance_portal | 2.0.0.3 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.3:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2014-03-26 10:55:00
seebug
seebug
IBM Netezza Performance Portalๅฎๅ
จ็ป่ฟๆผๆด
2014-03-18 00:00:00
ibm
ibm
cvelist
cvelist
CVE-2014-0848
2014-03-26 10:00:00
nvd
nvd
CVE-2014-0848
2014-03-26 10:55:05
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
35.1%
Related for CVE-2014-0848