The Internet Service Monitor (ISM) agent in IBM Tivoli Composite Application Manager (ITCAM) for Transactions 7.1 and 7.2 before 7.2.0.3 IF28, 7.3 before 7.3.0.1 IF30, and 7.4 before 7.4.0.0 IF18 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain credential information via a crafted certificate.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2014-10-29T10:00:00
Updated: 2024-08-06T10:28:46.390Z
Reserved: 2014-04-29T00:00:00
Link: CVE-2014-3051
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-10-29T10:55:03.430
Modified: 2017-08-29T01:34:36.843
Link: CVE-2014-3051
Redhat
No data.