CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
35.1%
The (1) ssl.conf and (2) httpd.conf files in the Apache HTTP Server component in IBM Netezza Performance Portal 2.0 before 2.0.0.4 have weak SSLCipherSuite values, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | netezza_performance_portal | 2.0.0.0 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.0:*:*:*:*:*:*:* |
ibm | netezza_performance_portal | 2.0.0.1 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.1:*:*:*:*:*:*:* |
ibm | netezza_performance_portal | 2.0.0.2 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.2:*:*:*:*:*:*:* |
ibm | netezza_performance_portal | 2.0.0.3 | cpe:2.3:a:ibm:netezza_performance_portal:2.0.0.3:*:*:*:*:*:*:* |