IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 does not require SSL, which allows remote attackers to obtain sensitive cleartext information by sniffing the network.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2016-11-30T11:00:00
Updated: 2024-08-05T23:40:13.825Z
Reserved: 2016-03-09T00:00:00
Link: CVE-2016-2953
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2016-11-30T11:59:16.403
Modified: 2016-11-30T20:35:59.667
Link: CVE-2016-2953
Redhat
No data.