IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 140089.
References
Link | Resource |
---|---|
http://www.ibm.com/support/docview.wss?uid=swg22015222 | Vendor Advisory |
http://www.securitytracker.com/id/1041038 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/140089 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2018-06-01T00:00:00
Updated: 2018-06-06T09:57:01
Reserved: 2017-12-13T00:00:00
Link: CVE-2018-1454
JSON object: View
NVD Information
Status : Modified
Published: 2018-06-05T15:29:00.407
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-1454
JSON object: View
Redhat Information
No data.
CWE