Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM WebSphere DataPower SOA appliances through 4.0.2.15, 5.x through 5.0.0.17, 6.0.0.x through 6.0.0.9, and 6.0.1.x through 6.0.1.5 make it easier for remote attackers to obtain a PreMasterSecret value and defeat cryptographic protection mechanisms by sending a large number of requests in an SSL/TLS side-channel timing attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM WebSphere DataPower SOA Appliances 安全漏洞
Vulnerability Description
IBM WebSphere DataPower SOA Appliances是美国IBM公司的一套网络设备。该设备主要用于简化、保护和加速SOA中的XML和Web服务部署。 IBM WebSphere DataPower SOA Appliances中存在安全漏洞。远程攻击者可通过在SSL/TLS边信道实时攻击里发送大量请求利用该漏洞获取PreMasterSecret值,破坏密码保护机制。以下版本受到影响:IBM WebSphere DataPower SOA Appliances 4.0.2.15之前版
CVSS Information
N/A
Vulnerability Type
N/A