Lack of HTTPS Encryption in IBM Multi-Enterprise Integration Gateway and B2B Advanced Communications

Lack of HTTPS Encryption in IBM Multi-Enterprise Integration Gateway and B2B Advanced Communications

CVE-2016-0341 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 through 1.0.0.4 do not require HTTPS, which might allow remote attackers to obtain sensitive information by sniffing the network.

Learn more about our Network Penetration Testing.