Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Auto-Scaling agent in Liberty for Java in IBM Bluemix before 2.7-20160321-1358 allows remote authenticated users to disable X.509 certificate validation, and consequently bypass an intended HTTPS trust-management feature, via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Bluemix Liberty for Java 安全漏洞
Vulnerability Description
Liberty for Java in IBM Bluemix是美国IBM公司的一套基于IBM Bluemix(平台即服务,PaaS)产品的动态应用程序服务器运行时环境,它可用于快速开发云应用程序。 IBM Bluemix 2.7-20160321-1358之前版本的Liberty for Java中的Auto-Scaling代理存在安全漏洞。远程攻击者可利用该漏洞禁用X.509证书验证,绕过既定的HTTPS trust-management功能。
CVSS Information
N/A
Vulnerability Type
N/A