2 matches found
Security Bulletin: IBM Security Key Lifecycle Manager is affected by Query Parameter in SSL Request (CVE-2016-6102)
Summary IBM Security Key Lifecycle Manager allows storage of sensitive information in URLs. Vulnerability Details CVEID: CVE-2016-6102 DESCRIPTION: IBM Tivoli Key Lifecycle Manager stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have...
CVE-2016-6102
CVE-2016-6102 affects IBM Security Key Lifecycle Manager (formerly Tivoli Key Lifecycle Manager). The vulnerability arises because versions 2.5 (2.5.0.7 and earlier) and 2.6 (2.6.0.2 and earlier) store sensitive information in URL parameters, enabling possible information disclosure if URLs are c...