3 matches found
CVE-2023-38730
creationtimestamp| type| source ---|---|--- 2023-08-28 02:21:17+00:00| seen| https://t.me/cibsecurity/69251...
CVE-2023-38730
IBM Spectrum Copy Data Management (SCDM) versions 2.2.0.0–2.2.19.0 use weaker cryptographic algorithms, enabling potential disclosure of highly sensitive data. The root cause is the use of insufficiently strong cryptography (e.g., weak DH moduli discussed in the IBM bulletin), affecting confident...
Security Bulletin: IBM Spectrum Copy Data Management uses weaker than expected cryptographic algorithms
Summary IBM SCDM allows SSL/TLS connections with one or more Diffie-Hellman moduli less than or equal to 1024 bits. Through cryptanalysis, a third party may be able to find the shared secret in a short amount of time depending on modulus size and attacker resources. This may allow an attacker to...