2 matches found
Security Bulletin:IBM Security Key Lifecycle Manager is affected by SQL injection (CVE-2017-1670 )
Summary IBM Security Key Lifecycle Manager is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. Vulnerability Details CVEID: CVE-2017-1670 DESCRIPTION: IBM...
CVE-2017-1670
CVE-2017-1670 affects IBM Security Key Lifecycle Manager (formerly Tivoli Key Lifecycle Manager) and is due to a SQL injection in the back-end database. Affected versions: 2.5 (2.5.0.8 and earlier), 2.6 (2.6.0.3 and earlier), and 2.7 (2.7.0.2 and earlier). Impact per sources: attacker could remot...