Caching of Documents in SSL Sessions Vulnerability

Caching of Documents in SSL Sessions Vulnerability

CVE-2015-2019 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not prevent caching of documents retrieved in SSL sessions, which allows physically proximate attackers to obtain sensitive information by leveraging an unattended workstation.

Learn more about our Cis Benchmark Audit For Server Software.