Improper TLS Configuration in IBM WebSphere Application Server Allows Man-in-the-Middle Attacks

Improper TLS Configuration in IBM WebSphere Application Server Allows Man-in-the-Middle Attacks

CVE-2018-1996 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 154650.

Learn more about our Cis Benchmark Audit For Ibm Websphere.