Information Disclosure via Null SSL Cipher

Information Disclosure via Null SSL Cipher

CVE-2014-6088 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to obtain sensitive information by sniffing the network during use of the null SSL cipher.

Learn more about our Web App Pen Testing.