Description
IBM Tivoli Key Lifecycle Manager 2.6, 2.7, and 3.0 does not properly limit the number or frequency of interaction which could be used to cause a denial of service, compromise program logic or other consequences. IBM X-Force ID: 148420.
CVSS breakdown
CVSS 3.0
Availability
Low
Attack Complexity
Low
Attack Vector
Network
Confidentiality
None
Integrity
Low
Privileges Required
None
Scope
Unchanged
User Interaction
None
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / Security Key Lifecycle Manager2.6 – 2.6
- ibm / Security Key Lifecycle Manager2.7 – 2.7
- ibm / Security Key Lifecycle Manager3.0 – 3.0