Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-0201
HistoryJan 18, 2016 - 5:59 a.m.

CVE-2016-0201

2016-01-1805:59:07
CWE-200
[email protected]
web.nvd.nist.gov
36
cve-2016-0201
ibm security network protection 5.3.1
remote attackers
md5 collision
credentials

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.2%

JSON

GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to discover credentials by triggering an MD5 collision.

Affected configurations

NVD
Node
ibmsecurity_network_protection_firmwareMatch5.3.1
OR
ibmsecurity_network_protection_firmwareMatch5.3.2
VendorProductVersionCPE
ibmsecurity_network_protection_firmware5.3.1cpe:/o:ibm:security_network_protection_firmware:5.3.1:::
ibmsecurity_network_protection_firmware5.3.2cpe:/o:ibm:security_network_protection_firmware:5.3.2:::

Related

ibm 49
cvelist 1
openvas 1
prion 1
nvd 1
nessus 1
ibm
ibm
Security Bulletin: A vulnerability in the GSKit component of IBM Tivoli Continuous Data Protection for Files (CVE-2016-0201)
2018-06-17 15:15:51
Security Bulletin: A security vulnerability has been identified in IBM Tivoli Storage Manager that affects multiple IBM Tivoli Storage products (CVE-2016-0201)
2018-06-17 15:18:01
Security Bulletin: A vulnerability in the GSKit component of IBM Security SiteProtector System (CVE-2016-0201)
2018-06-16 21:39:11
cvelist
cvelist
CVE-2016-0201
2016-01-18 02:00:00
openvas
openvas
IBM Security Network Protection Information Disclosure Vulnerability
2017-01-10 00:00:00
prion
prion
Code injection
2016-01-18 05:59:00
nvd
nvd
CVE-2016-0201
2016-01-18 05:59:07
nessus
nessus
IBM HTTP Server 8.5.0.0 <= 8.5.5.8 / 8.0.0.0 <= 8.0.0.12 Multiple Vulnerabilities (538705)
2020-12-11 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.2%

JSON
Related for CVE-2016-0201
ibm49cvelist1openvas1prion1nvd1nessus1