Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Identity and Access Management (IAM) services (IBM Cloud Private 3.1.0) do not use a secure channel, such as SSL, to exchange information only when accessed internally from within the cluster. It could be possible for an attacker with access to network traffic to sniff packets from the connection and uncover data. IBM X-Force ID: 150903
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Cloud Private 安全漏洞
Vulnerability Description
IBM Cloud Private是美国IBM公司的一套企业私有云解决方案。该产品主要基于Kubernetes和容器技术搭建。 IBM Cloud Private 3.1.0版本中存在安全漏洞,该漏洞源于在从集群内部进行访问时,身份和访问管理(IAM)服务没有使用安全的通道(例如:SSL)来交换信息。攻击者可利用该漏洞嗅探数据包并获取数据。
CVSS Information
N/A
Vulnerability Type
N/A