Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 212783.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Tivoli Key Lifecycle Manager 信息泄露漏洞
Vulnerability Description
IBM Tivoli Key Lifecycle Manager(TKLM)是美国IBM公司的一套密钥生命周期管理软件。该软件为存储设备提供密钥存储、密钥维护和密钥生命周期管理等功能。 IBM Tivoli Key Lifecycle Manager 存在信息泄露漏洞,该漏洞源于IBM Tivoli Key Lifecycle Manager未能正确启用HTTP Strict Transport Security造成的。攻击者可利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A