IBM WebSphere Application Server 8.5 and 9.0 traditional container uses weaker than expected cryptographic keys that could allow an attacker to decrypt sensitive information. This affects only the containerized version of WebSphere Application Server traditional. IBM X-Force ID: 241045.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/241045 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6857007 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
07 Nov 2023, 03:54
Type | Values Removed | Values Added |
---|---|---|
Summary | IBM WebSphere Application Server 8.5 and 9.0 traditional container uses weaker than expected cryptographic keys that could allow an attacker to decrypt sensitive information. This affects only the containerized version of WebSphere Application Server traditional. IBM X-Force ID: 241045. |
Information
Published : 2023-01-26 21:17
Updated : 2024-02-28 19:51
NVD link : CVE-2022-43917
Mitre link : CVE-2022-43917
CVE.ORG link : CVE-2022-43917
JSON object : View
Products Affected
linux
- linux_kernel
oracle
- solaris
ibm
- z\/os
- i
- aix
- websphere_application_server
microsoft
- windows
hp
- hp-ux
CWE
CWE-327
Use of a Broken or Risky Cryptographic Algorithm