CVE-2017-1395

The CVE-2017-1395 entry affects IBM Security Identity Governance Virtual Appliance (IGI) 5.2 to 5.2.3.2. Root cause: HTTP Strict Transport Security was not properly enabled, enabling an information-disclosure scenario via MITM attacks. Impact: partial confidentiality loss through exposed sensitiv...