Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Directory Server 6.4.0 stores sensitive information in URLs. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history. IBM X-Force ID: 166623.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Directory Server 信息泄露漏洞
Vulnerability Description
IBM Security Directory Server是美国IBM公司的一套使用了轻量级目录访问协议(LDAP)的企业身份管理软件。该软件提供一个可信的身份数据基础架构,用于身份验证。 IBM Security Directory Server 6.4.0.0及之后版本(6.4.0.20版本已修复)中存在信息泄露漏洞,该漏洞源于程序将敏感信息存储在URLs中。攻击者可利用该漏洞获取信息。
CVSS Information
N/A
Vulnerability Type
N/A