IBM Tivoli Endpoint Manager (IBM BigFix 9.2 and 9.5) could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 123908.
References
Link | Resource |
---|---|
http://www.ibm.com/support/docview.wss?uid=swg22005246 | Issue Tracking Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/123908 | Issue Tracking VDB Entry Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2017-11-07T00:00:00
Updated: 2017-11-13T22:57:01
Reserved: 2016-11-30T00:00:00
Link: CVE-2017-1229
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-11-13T23:29:00.260
Modified: 2017-11-29T17:28:47.480
Link: CVE-2017-1229
JSON object: View
Redhat Information
No data.
CWE