← back
CVE-2016-2953

CVE-2016-2953

EPSS 1.3%
IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 does not require SSL, which allows remote attackers to obtain sensitive cleartext information by sniffing the network.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www-01.ibm.com/support/docview.wss?uid=swg1LO90268http://www-01.ibm.com/support/docview.wss?uid=swg1LO90295http://www-01.ibm.com/support/docview.wss?uid=swg21990888http://www.securityfocus.com/bid/94415