Insecure Data Encryption in IBM WebSphere Application Server (WAS) 8.0 and 8.5

Insecure Data Encryption in IBM WebSphere Application Server (WAS) 8.0 and 8.5

CVE-2015-5004 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The Edge Component Caching Proxy in IBM WebSphere Application Server (WAS) 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm I.